| Pre-Access to Victim’s Account via Facebook Signup |
|
|
|
| How i hacked worldwide ZOOM users |
|
|
|
| Facebook OAuth Framework Vulnerability |
|
|
|
| Facebook CSRF bug which lead to Instagram Partial account takeover. |
|
|
|
| Mail.Ru Ext.B Scope Account Takeover [ $1500 ] |
|
|
|
| Abusing feature to steal your tokens |
|
|
|
| Finding a security bug in Discord and what it taught me |
|
|
|
| Bypassing GitHub's OAuth flow |
|
|
|
| [Case Study] OAuth Misconfiguration leads to Account Takeover |
|
|
|
| Bug or Feature? GitHub Adventure #001 |
|
|
|
| BookMyShow account takeover using social login |
|
|
|
| Story about Facebook Oauth Account Takeover |
|
|
|
| Chaining Tricky OAuth Exploitation To Stored XSS |
|
|
|
| Oauth Misconfiguration lead to complete account takeover |
|
|
|
| $3k Bug Bounty - Twitter's OAuth Mistakes |
|
|
|
| #BugBounty — “User Account Takeover-I just need your email id to login into your shopping portal account” |
|
|
|
| Microsoft Account Takeover Vulnerability Affecting 400 Million Users |
|
|
|
| Applying a small bypass to steal Facebook Session tokens in Uber |
|
|
|
| Bug bounty left over (and rant) Part III (Google and Twitter) |
|
|
|
| Yahoo Bug Bounty: Exploiting OAuth Misconfiguration To Takeover Flickr Accounts |
|
|
|
| Stealing 0Auth Token (MITM) |
|
|
|
| Stealing Access Token of One-drive Integration By Chaining CSRF Vulnerability |
|
|
|
| Authentication bypass on Airbnb via OAuth tokens theft |
|
|
|
| Bug Bounty : Account Takeover Vulnerability POC |
|
|
|
| Internet Explorer has a URL problem |
|
|
|
writeups.xyz
/
OAuth