Akash MethaniinInfoSec Write-upsExploiting misconfigured OAuth to takeover accountsHi, in this writeup I will talk about two misconfigured OAuth flaws I found while looking for bugs, without further ado let’s begin.4 min read·Mar 30, 2021----
Akash MethaniinInfoSec Write-upsLeveraging Template injection to takeover an account.Hi, I am back again with an interesting writeup, this is about a template injection bug I reported to a private program last year.3 min read·Mar 4, 2021----
Akash MethaniinInfoSec Write-upsHow I leveraged an interesting CSRF vulnerability to turn self XSS into a persistent attack?Hi, today I will talk about how I leveraged an interesting CSRF vulnerability to turn self XSS into a persistent attack.3 min read·Jun 1, 2020----
Akash MethaniinInfoSec Write-upsHow I discovered an interesting account takeover flaw?Hi everyone, today I will talk about an interesting account takeover flaw which I found around a year back. The root cause of this issue…3 min read·Jan 14, 2020--3--3