Open in app

Sign In

Write

Sign In

Mahmoud Mohamed
Mahmoud Mohamed

102 Followers

Home

About

Pinned

Misconfiguration in Change-password Functionality Leads to Account Takeover

Misconfiguration in Change-password Functionality Leads to Account Takeover Hello everyone, We are Mahmoud Radwan and Mahmoud Samaha (0x2m) and this is our first Write-Up ever. This Write-Up describes How we could Takeover any account on a site using some misconfigurations in Change-Password Functionality. We were testing a private program so let’s call it site.com, …

Bug Bounty

3 min read

Misconfiguration in Change-password Functionality Leads to Account Takeover
Misconfiguration in Change-password Functionality Leads to Account Takeover
Bug Bounty

3 min read

Mahmoud Mohamed

Mahmoud Mohamed

102 Followers
Following
  • Immunefi

    Immunefi

  • InfoSecSherpa

    InfoSecSherpa

  • R. Eric Kiser

    R. Eric Kiser

  • Jerry Shah (Jerry)

    Jerry Shah (Jerry)

  • Just Mobile Security

    Just Mobile Security

See all (59)

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech

Teams