Full Account Takeover via Changing Email And Password of any User through API Parameters

chaliye shuru Karte Hai
Shocked
proof of concept

--

--

--

Listed in Top 100 most respected hackers in the world by Microsoft at the BlackHat conference in America 2018

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Intro to LAN

{UPDATE} Cooking Dash Story - Fast Food Store & Burger King Hack Free Resources Generator

The Pain Towards Passwordless*

BurnDoge Now On Press Release !

SQL Injection 101

Tornado.cash compliance

What is confusion matrix and why it is used?

PlutusDeFi announces new Native ETH Mixer -PlutusDeFi “Bl3nd3r”

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Adesh Kolte

Adesh Kolte

Listed in Top 100 most respected hackers in the world by Microsoft at the BlackHat conference in America 2018

More from Medium

Exploiting IOTransfer insecure API CVE-2022–24562

CSRF prevention: Control your TLDs

Writeup: CSRF where token is tied to non-session cookie @ PortSwigger Academy

VulnHub Walkthrough’s : BOX 1