writeups.xyz / How I was able to take over any users account with host header injection

Submitter : c2a

Date: 23 January 2020

Bounty : 900

Vulnerabilities :

• Host Header Injection

Programs :

• Undisclosed

Authors :

• Ajay Gautam (@Evilboyajay)

Link :
https://medium.com/nassec-cybersecurity-writeups/how-i-was-able-to-take-over-any-users-account-with-host-header-injection-546fff6d0f2