Open in app
Home
Notifications
Lists
Stories

Write
Mahmoud Mohamed
Mahmoud Mohamed

Home

About

Pinned

Misconfiguration in Change-password Functionality Leads to Account Takeover

Misconfiguration in Change-password Functionality Leads to Account Takeover Hello everyone, We are Mahmoud Radwan and Mahmoud Samaha (0x2m) and this is our first Write-Up ever. This Write-Up describes How we could Takeover any account on a site using some misconfigurations in Change-Password Functionality. We were testing a private program so let’s call it site.com, …

Bug Bounty

3 min read

Misconfiguration in Change-password Functionality Leads to Account Takeover
Misconfiguration in Change-password Functionality Leads to Account Takeover
Mahmoud Mohamed

Mahmoud Mohamed

Following
  • r4msolo

    r4msolo

  • Kapil Verma

    Kapil Verma

  • Vickie Li

    Vickie Li

  • Ashish Jha

    Ashish Jha

  • Chenny Ren

    Chenny Ren

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Knowable