writeups.xyz / Defeat the HttpOnly flag to achieve Account Takeover | RXSS

Submitter : c2a

Date: 10 August 2022

Bounty : undisclosed

Vulnerabilities :

• Reflected XSS
• Account Takeover

Programs :

• Undisclosed

Authors :

• Mohamed Tarek (@Timooon107)

Link :
https://mohamedtarekq.medium.com/defeat-the-httponly-flag-to-achieve-account-takeover-rxss-c16849d3d192