Authentication is absolutely need to get user's personal data. I marked it for secret. As I said with my drawing, victim access to attacker's malicious server using URL and my exploit code on the… - r0b0ts - Medium

No authentication token in the api request?I
1
Vikas Anand
r0b0ts
·Follow
Aug 6, 2024
--
Authentication is absolutely need to get user's personal data. I marked it for secret. As I said with my drawing, victim access to attacker's malicious server using URL and my exploit code on the malicious server executes with 'victim's authentication token'.
--
--
Written by r0b0ts140 Followers
·44 Following
Bug Bounty Hunter | WebApp Security | Korean
No responses yet
Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams