writeups.xyz / DMCA.COM Hack, Full Disclosure (With Proof-of-Concept)

Submitter : c2a

Date: 21 April 2021

Bounty : undisclosed

Vulnerabilities :

• Privilege Escalation
• Client-Side Enforcement of Server-Side Security
• Stored XSS
• Broken Access Control

Programs :

• DMCA

Authors :

• Joël Aviad Ossi

Link :
https://websec.nl/blog/606ecfec2f798a048269340e/dmcacom%20hack%20full%20disclosure%20with%20proof-of-concept