writeups.xyz / Bypassing the Current Password Protection at PayPal TechSupport Portal

Submitter : c2a

Date: 19 April 2018

Bounty : undisclosed

Vulnerabilities :

• Broken Authorization
• Account Takeover

Programs :

• Paypal

Authors :

• YoKo Kho (@YokoAcc)

Link :
https://medium.com/@YoKoKho/bypassing-the-current-password-protection-at-techsupport-portal-b9005ee17e64