Home
Blogs
Bookmarks
ForumsNew
Search

Author

Write
Drafts

Sign in

Terms Privacy Sitemap

© 2026 LinearBytes Inc.

Search Hashnode

Search posts, tags, users, and pages

Discussion on "Hijacking OAuth Code via Reverse Proxy for Account Takeover" | Hashnode

Discussion

Omid Rezaei

Nov 17, 2023

Hijacking OAuth Code via Reverse Proxy for Account Takeover

Recon: The target scope I had selected was fixed to the main application: 1377.targetstaging.app In the first phase of my narrow recon approach, I utilized various services like Archive, Google, and Yahoo to extract endpoints and different paths. Ho...

blog.voorivex.team5 min read

#bugbounty #bugbountytips #security #oauth #reverse-proxy

Responses(1)

asdawd

awdawd

Cool

امید در اخر برای این کار اکسپلویتی هم نوشتی(چون بعضی جاها یک توکنی وجود داره) یا همین کفایت میکنه و گزارش کردی

Most discussed in Forum

A
I Replaced ChatGPT With Google NotebookLM — Here’s My Audit & Workflow
25A A A1d ago
M
🚀 Just Published: A Complete Guide to Installing SHONiR CMS – A Modern, Open-Source CMS Built on CodeIgniter 4
44A C6d ago
B
This content is flagged and removed by AUTOMOD, how can I publish the blog
44F J F5d ago
S
What factors should developers consider when building a high-performance business website?
22F5d ago
S
Hi, I'm Shubham kahar
22S R1d ago

View all threads

masoud fathi

ddd

Recent in Forum

A
AI Replaces 95% of Devs: The 5% Survivor Is 20× Better
11A1h ago
L
Hi, I'm lalit gurjar
4h ago
R
Hi, I'm Rahul💭♾️
4h ago
S
Do outcome-based delivery models create better software incentives than hourly billing, or just different tradeoffs?
31F9h ago
A
I built a tool to replace Fakespot. Here's what I learned about LLM verdicts vs scores.
11N9h ago

View all threads