Back to directory
WRITEUP #832

Uncovering Web Cache Deception: A Missed Vulnerability in the Most Unexpected Places

OtherWeb cache deception
by@vikzsharma(Vikas Anil Sharma)
Program
-
Published
Sep 4, 2023
Added to HackDex
Feb 6, 2024
Read Full Writeuphttps://blog.agilehunt.com/blogs/security/web-cache-deception-attack-on-404-page-exposing-pii-data-to-unauthenticated-users
RELATED WRITEUPS
Gotta cache 'em all: bending the rules of web cache exploitation
OtherWeb cache poisoning
Splitting the email atom: exploiting parsers to bypass access controls
OtherWeb cache poisoning
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff
OtherSSTI

Built with ❤️ by Shubham Rawat