| From Revealing Emails to Taking Over Accounts (Hacking Telecom) |
|
|
|
| Account Takeover via Custom OTP, No User Interaction Required! |
|
|
|
| How I get 1000$ bounty for Discovering Account Takeover in Android Application |
|
|
|
| Story of a Beautiful Account Takeover. |
|
|
|
| How I chained multiple High-impact vulnerabilities to create a critical one. |
|
|
|
| Bugcrowd — Tale of multiple misconfigurations!! ❌ |
|
|
|
| Exposing Millions of Voter ID card users’ details. |
|
|
|
| Account Takeover by OTP bypass |
|
|
|
| Account verification code bypass lead to a $4000 bounty |
|
|
|
| Its all about 2fa bypass, or Account Takeover |
|
|
|
| Hacking Subscription Plans for free service. |
|
|
|
| Mixed Messages: Busting Box’s MFA Methods |
|
|
|
| How I managed to hack User accounts of a billion-dollar sport platform |
|
|
|
| Bypassing Box’s Time-based One-Time Password MFA |
|
|
|
| 500$ Bug: Sensitive Data Exposure to Broken Access Control leads, How I able to take over any account of India’s Biggest College Ever.👨💻 |
|
|
|
| How I found bug on Google Cloud |
|
|
|
| Improper phone number validation to account takeover |
|
|
|
| How I can take over any user’s account with their mobile number |
|
|
|
| How I turned 0000 into $600: Phone Verification Bypass |
|
|
|
| Lets Learn English - Hacking 10M+ Users |
|
|
|
| OTP brute-force via rate limit bypass |
|
|
|
| Account Takeover via Response Manipulation worth 1800$.. |
|
|
|
| Is Math.random() Safe? from missing rate limit to bypass 2fa and possible sqli |
|
|
|
| OTP Bypass Account Takeover to Admin Panel — Ft. Header Injection |
|
|
|
| BMW Bug Bounty – Account Verification Bypass writeup |
|
|
|
writeups.xyz
/
OTP Bypass