| Finding XSS on .apple.com and building a proof of concept to leak your PII information |
|
|
|
| The feature works as intended, but what’s in the source? |
|
|
|
| New features means new bugs |
|
|
|
| Using XAMPP and Burp Intruder when scanning for subdomains to look for interesting behaviour & code |
|
|
|
| Easily leaking passenger information on an Airline |
|
|
|
| Leaking OpenID tokens with “ — the bug right infront of you |
|
|
|
| CSRF 'protection' bypass on xvideos |
|
|
|
| It’s all in the detail: Email leak & Account takeover thanks to WayBackMachine & extensive knowledge about the program |
|
|
|
| Improper CSRF token handling leads to site-wide CSRF issue, chained with clickjacking = woot! Multiple sites vulnerable |
|
|
|
| How re-signing up for an account lead to account takeover |
|
|
|
| How signing up for an account with an @company.com email can have unexpected results |
|
|
|
| Hey UserID x, what’s your secret token? Broken API enables me to leak/modify any users personal information |
|
|
|
| One company: 262 bugs, 100% acceptance, 2.57 priority, millions of user details saved. |
|
|
|
writeups.xyz
/
Zseano (@Zseano)