An Interesting Account Takeover Vulnerability

--

--

--

Red Team Security Consultant at Digital14 | Lead Pentester @Cobalt_io | Synack Red Team member @Synack | Acknowledged by Google, Microsoft, Apple, and 50+

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

11/21/20 Claim Outcome for Pickle Finance

Requesting your personal data from GAFA: Where to go

How to Add and Import Zoho mail to Gmail easily?

{UPDATE} Mountain Climber: Frozen Dream Hack Free Resources Generator

Don’t Over-egg Your Profile …

Is Cryptography the Ohm’s Law of Cyber Security?

How to Deposit BEP20 Assets to BurgerSwap?

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Avanish Pathak

Avanish Pathak

Red Team Security Consultant at Digital14 | Lead Pentester @Cobalt_io | Synack Red Team member @Synack | Acknowledged by Google, Microsoft, Apple, and 50+

More from Medium

The Secret trick for subdomain Enumeration

($$$) Broken Authentication and IDOR at [REDACTED]

[ Directory Traversal attack ] How did I find it using GitHub

SSRF to a Full Account Takeover (ATO)