AdolphoramirezDOM based open redirect to the leak of a JWT tokenDom-based open redirects can be underestimated on pentests/bug bounty programs. However, depending on the application’s context, this kind…Apr 20, 20201Apr 20, 20201
AdolphoramirezAdvanced Javascript injections : Amazon XSS to full account takeoverWhile doing some purchases on amazon.fr, i saw that it was possible to create a seller account on the domain sellercentral.amazon.fr.Apr 20, 2020Apr 20, 2020
AdolphoramirezAdvanced Javascript injections : Amazon XSS to full account takeoverWhile doing some purchases on amazon.fr, i saw that it was possible to create a seller account on the domain sellercentral.amazon.fr.Apr 16, 2020Apr 16, 2020