- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
[H1 Bug PoC 1] - Leaked Token and Reusability of Email Confirmation Link Leading to Account Takeover
[Chapter 1] - kerentanan pada sistem konfirmasi email dan konfirmasi perangkat di hackerone milik sorare. token konfirmasi yang seharusnya sekali pakai bocor melalui google indexing (google dork), lalu masih bisa dimanipulasi dan digunakan kembali meskipun statusnya sudah “invalid” atau “expired”.
selain itu, juga ditemukan bahwa dengan sedikit memodifikasi karakter tertentu pada token, attacker dapat login ke akun korban tanpa password hanya melalui tautan konfirmasi email atau perangkat tersebut. selain itu, attacker bisa masuk ke profil pengguna lain dan mengubah informasi seperti nama atau foto profil.
dampaknya adalah potensi account takeover, akses tanpa otorisasi ke akun pengguna, kebocoran informasi pribadi (pii), serta penyalahgunaan akun korban jika tautan konfirmasi bocor atau terindeks mesin pencari.
a vulnerability was found in the email confirmation and device confirmation system on hackerone for sorare. the confirmation token, which is supposed to be single-use, was exposed through google indexing (google dorking). it could still be manipulated and reused even after it was marked as “invalid” or “expired”.
in addition, it was discovered that by slightly modifying certain characters in the token, an attacker could log into a victim’s account without a password, simply by using the email or device confirmation link. in some cases, the attacker could also access other users’ profiles and change information such as the name or profile picture.
the impact of this issue includes potential account takeover, unauthorized access to user accounts, exposure of personal information (pii), and abuse of victim accounts if the confirmation link is leaked or indexed by search engines.
Reference & Source: https://hackerone.com/reports/1817214
#cybersecurity #bugbounty #ethicalhacking #webapp #infosec #hackerone #report #vulnerability #youtube #video #proofofconcept #show
Видео [H1 Bug PoC 1] - Leaked Token and Reusability of Email Confirmation Link Leading to Account Takeover канала Cyber Kenma
selain itu, juga ditemukan bahwa dengan sedikit memodifikasi karakter tertentu pada token, attacker dapat login ke akun korban tanpa password hanya melalui tautan konfirmasi email atau perangkat tersebut. selain itu, attacker bisa masuk ke profil pengguna lain dan mengubah informasi seperti nama atau foto profil.
dampaknya adalah potensi account takeover, akses tanpa otorisasi ke akun pengguna, kebocoran informasi pribadi (pii), serta penyalahgunaan akun korban jika tautan konfirmasi bocor atau terindeks mesin pencari.
a vulnerability was found in the email confirmation and device confirmation system on hackerone for sorare. the confirmation token, which is supposed to be single-use, was exposed through google indexing (google dorking). it could still be manipulated and reused even after it was marked as “invalid” or “expired”.
in addition, it was discovered that by slightly modifying certain characters in the token, an attacker could log into a victim’s account without a password, simply by using the email or device confirmation link. in some cases, the attacker could also access other users’ profiles and change information such as the name or profile picture.
the impact of this issue includes potential account takeover, unauthorized access to user accounts, exposure of personal information (pii), and abuse of victim accounts if the confirmation link is leaked or indexed by search engines.
Reference & Source: https://hackerone.com/reports/1817214
#cybersecurity #bugbounty #ethicalhacking #webapp #infosec #hackerone #report #vulnerability #youtube #video #proofofconcept #show
Видео [H1 Bug PoC 1] - Leaked Token and Reusability of Email Confirmation Link Leading to Account Takeover канала Cyber Kenma
Комментарии отсутствуют
Информация о видео
23 мая 2026 г. 14:35:50
00:03:54
Другие видео канала
#simple methodology for finding vulnerabilities in web applications | #bug hunting video
initial guide in burpsuite setup | solve basic problems
visit akira site | one of dangerous ransomware group in the world
how to install tails os using virtualbox in windows 11
bruteforce the target directory with burpsuite without dirsearch
guide installing wsl on windows 11 | just 4 step
setting up burpsuite proxy without foxyproxy on windows 11
how to prevent windows 11 from tapping into your phone's internet quota
how to identify click jacking vulnerabilities on a website | #tutorial
![[H1 Bug PoC] - IDOR Leads To Account Takeover Without User Interaction](https://i.ytimg.com/vi/gkQBCBERHYs/default.jpg)
[H1 Bug PoC] - IDOR Leads To Account Takeover Without User Interaction
PHP code character sanitization process. form of prevention against xss and html injection attacks
![[H1 Bug PoC] - IDOR Leads To Edit Anyone's Blogs or Websites](https://i.ytimg.com/vi/uPdCruWVslc/default.jpg)
[H1 Bug PoC] - IDOR Leads To Edit Anyone's Blogs or Websites
![[H1 Bug PoC] - Lack Of Authorization Checks - Update Sound Titles](https://i.ytimg.com/vi/Snk2nGXur6k/default.jpg)
[H1 Bug PoC] - Lack Of Authorization Checks - Update Sound Titles
![[H1 Bug PoC] - IDOR in Backup Recovery Functionality](https://i.ytimg.com/vi/Yxb3VTIWD-E/default.jpg)
[H1 Bug PoC] - IDOR in Backup Recovery Functionality
how to resolve "command not found" when installing a go based github repo
![[H1 Bug PoC] - IDOR Leads To User Profile Modification - MTNBoard](https://i.ytimg.com/vi/rh9DkaS7WsM/default.jpg)
[H1 Bug PoC] - IDOR Leads To User Profile Modification - MTNBoard
how to prevent windows 11 from going to sleep
review site of everest ransomware | hacker group who has attacked 70 company
advanced settings for being anonymous in tor browser #windows
simple explanation about & and | symbol in linux
