CSRF Bypass Using Cross Frame Scripting
Initially I tested for CSRF vulnerability on this module but it was completely mitigated and there was a token in the post request which was validated by the server, hence
Read moreCSRF Attack can lead to Stored XSS
I found a CSRF attack to add the XSS payload but there is a problem I should get the template ID to edit it and I can’t Brute Force it
Read moreCORS leads to CSRF Attack
This writeup is about the CORS Misconfiguration by which I was able to perform a CSRF attack to change other users account Info.
Read moreBypass CSRF With ClickJacking
This write up is all about how I chained the two different vulnerabilities to update the victim account details. Let’s assume the website name is redacted.com
Read moreXSS in Email Login Fields
Cross Site Scripting (XSS) is a vulnerability in a web application that allows a third party to execute a script in the user’s browser.
Read more