writeups.xyz / Privilege Escalation via Account Takeover on NodeBB Forum Software — Bug Bounty (512$) — CVE-2020–15149

Submitter : c2a

Date: 19 September 2020

Bounty : 512

Vulnerabilities :

• IDOR
• Account Takeover

Programs :

• NodeBB

Authors :

• Muhammed Eren Uygun (@Erenuyguun)

Link :
https://medium.com/bugbountywriteup/privilege-escalation-via-account-takeover-on-nodebb-forum-software-512-a593a7b1b4a4