writeups.xyz
/
Yasser Gersy (@Yassergersy)
Title
Vulnerabilities
Programs
Authors
Exploiting post message to steal and replace user’s cookies
PostMessage
Undisclosed
Yasser Gersy (@Yassergersy)
Access to staging environment via User-Agent string
Authentication Bypass
Undisclosed
Yasser Gersy (@Yassergersy)
Account Take over via reset password
Password Reset
Account Takeover
Undisclosed
Yasser Gersy (@Yassergersy)
Stealing HttpOnly Cookie via XSS
XSS
Undisclosed
Yasser Gersy (@Yassergersy)
Page 1 of 1
writeups.xyz
/
Yasser Gersy (@Yassergersy)