writeups.xyz / Chaining CORS by Reflected xss to Account takeover #My first Blog

Submitter : c2a

Date: 26 December 2020

Bounty : undisclosed

Vulnerabilities :

• CORS Misconfiguration
• Reflected XSS
• Account Takeover

Programs :

• Undisclosed

Authors :

• Santosh Kumar Sha (@Killmongar1996)

Link :
https://notifybugme.medium.com/chaining-cors-by-reflected-xss-to-account-takeover-my-first-blog-5b4f12b43c70