How I managed to take over any account visits my profile with Stored XSS

Reconnaissance

--

--

--

Cyber Security Researcher | Bug Hunter

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Election Day Trading on Catnip.exchange

5 Technologies Shaping the Future of Cybersecurity

Shiba Inu Announces Shiba Metaverse Land Purchase/Auction With A Queue System

HECO AMA Series Recap — VEE.Finance

{UPDATE} Monster Truck Hack Free Resources Generator

The Samurai Way: Thwarting HTTP attacks with delicious WAF, IPtables and nginx whitelists.

Becoming Root Through Overprivileged Processes

Man jumping over a cliff in the desert

Mobile-first payment stack in India and the rise of 0.5A

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Mahmoud Youssef

Mahmoud Youssef

Cyber Security Researcher | Bug Hunter

More from Medium

Worst Bug bounty sites you should avoid

Sensitive Data Exfiltration through XSS ($450)

An Bug Bounty Hunter’s Guide to IDOR Vulnerabilities

Want to learn Account Takeover? I got you😉