writeups.xyz / Harel (@H4r3l)

Title	Vulnerabilities	Programs	Authors
Zoom Session Takeover - Cookie Tossing Payloads, OAuth Dirty Dancing, Browser Permissions Hijacking, and WAF abuse	XSS Cookie XSS Cookie Tossing OAuth Dirty Dancing Account Takeover	Zoom	Harel (@H4r3l) Sudhanshu Rajbhar (@Sudhanshur705) Bruno Halltari (@BrunoModificato)
ChatGPT Account Takeover - Wildcard Web Cache Deception	AI LLM Web Cache Deception Account Takeover Path Traversal URL Parsing Issue	OpenAI (ChatGPT)	Harel (@H4r3l)
Caching the Un-cacheables - Abusing URL Parser Confusions (Web Cache Poisoning Technique)	Web Cache Poisoning XSS DoS	Glassdoor	Harel (@H4r3l)

Page 1 of 1