Write-ups of PortSwigger Academy Labs
Authenication bypass via OAuth implicit flow
Forced Oauth Profile Linking
OAuth account hijacking via redirect_uri
Stealing OAuth access tokens via an open redirect
Stealing OAuth access tokens via a proxy page
Last updated 1 year ago