cyberpro151OAuth CSRF: Exploiting the Authorization Code Flow for Account TakeoverHello everyone! It’s cyberpro151 back with another writeup about an Account Takeover vulnerability that I found using CSRF vulnerability in…Jun 242Jun 242
cyberpro151Unlocked Secrets: How Leaked Credentials Fuel Bug BountiesHey there! It’s cyberpro151 back with another writeup about a finding for which I’ve got a lot of requests for writeup. In this writeup, I…May 234May 234
cyberpro151OTP Bruteforce Chained with Response Manipulation Leads to Zero Click Account TakeoverHey there! It’s cyberpro151 back with another PoC writeup for y’all.Apr 173Apr 173
cyberpro151My First Account Takeover Via Password Reset PoisoningHey there everyone! It’s cyberpro151 here and in today’s article, I’ll share with y’all that how I was able to find an Account Takeover…Feb 1611Feb 1611
cyberpro151How I was able to hack my college’s website with number of IDORs and CORS MisconfigurationsHey there! It’s cyberpro151 here and in todays’ article, I will share how I was able to hack my college’s website. So let’s get started.Feb 143Feb 143