Exploiting CSRF and OTP Reuse: How Weak Token Management Enables Password Reset Attacks, Leading…

Hello guy! I’m iPsalmy. It’s been a while I wrote anything here. Anyway, with no waste of time let’s talk about how I used a simple CSRF attack to exploit a weak token management which led to me taking over users account. I tend to test on password ...