writeups.xyz / Business logic flaw in the invitation system allows to Takeover any account at a private company

Submitter : c2a

Date: 15 June 2020

Bounty : undisclosed

Vulnerabilities :

• Account Takeover
• IDOR

Programs :

• Undisclosed

Authors :

• Daniel v. (@D4niel_v)

Link :
https://medium.com/bugbountywriteup/business-logic-flaw-in-invitation-system-allows-to-takeover-any-account-at-private-company-daaf898966b0