Session Fixation | writeups.xyz

Title	Vulnerabilities	Programs	Authors
$1600 Bounty on a Main Domain	Session Fixation 2FA / MFA Bypass Information Disclosure Authentication Bypass Open Redirect	Undisclosed	Debug (@Debug50)
Forced SSO Session Fixation	SSO Session Fixation Account Takeover	Undisclosed	Serj Novoselov (@Novoselov_s)
FlowFixation: AWS Apache Airflow Service Takeover Vulnerability and Why Neglecting Guardrails Puts Major CSPs at Risk	Cloud Account Takeover RCE Cookie Tossing Session Fixation	AWS Microsoft (Azure) Google (GCP)	Liv Matan (@TerminatorLM)
Securing Open-Source Solutions: A Study of osTicket Vulnerabilities	Stored XSS Reflected XSS SQL Injection Session Fixation	Enhancesoft (OsTicket)	Miguel Correia Davide Teixeira
How I Gained Access To A Finance Company’s Accounts (Session Hijacking)	Session Fixation Weak Crypto	Undisclosed	Talha Karakumru
Account Takeover + A Bonus Vulnerability	Account Takeover Session Fixation	Undisclosed	Vikash Maurya

Page 1 of 1