Gaurav BhosaleMultiple Organization Full account Take-over via privilege escalationA High severity security flaw in the organization’s web application allows an attacker to takeover user accounts, including high-privileged…Oct 7, 2023Oct 7, 2023
Gaurav BhosaleSensitive Data Disclosure (Unauthenticated Calls on Endpoints)Sensitive data disclosure due to unauthenticated calls on endpoints is a serious security risk that organizations must take seriously. This…Apr 18, 2023Apr 18, 2023
Gaurav BhosaleAccount Takeover By OTP Brute forceOAuth is an authorization framework used to identify and authenticate users for an application. With the increasing popularity of OAuth, it…Apr 13, 2023Apr 13, 2023