This actually doesn’t appear to be related to an OAuth misconfiguration, so the current interpretation seems a bit off.Sharing the bounty details might clear things up and prevent any misunderstandings, please dont mislead people if you are not 100% sure about the attack scenario.
ok think like this, if you have changed an account's email and you are not using the old one, then the old email should not login into the new one. I have tried on all other sites and this doesn't happen. Think again if you have doubt let me know
This actually doesn’t appear to be related to an OAuth misconfiguration, so the current interpretation seems a bit off.Sharing the bounty details might clear things up and prevent any misunderstandings, please dont mislead people if you are not 100% sure about the attack scenario.
ok think like this, if you have changed an account's email and you are not using the old one, then the old email should not login into the new one. I have tried on all other sites and this doesn't happen. Think again if you have doubt let me know
great finding , that what logical bugs end up with .
@@abdeladimemk9340 thanks
So informative
@@RS_Bhardwaj_ thanks
i still don't know, how the attacker can access confirm email address link?
it's not about the attacker, it's about the OAuth flaw. If the new mail was assigned then the old one should create a new account which it did not
Mostly pre account takeover doesn't get any bounty. Congrats you got $500 atleast.
@@screamy_619 thanks
What is the impact of this bug or real world scenario
It's 0Auth misconfig
severity >?
Depends
Is this program on Intigriti?
nope bugcrowd
Did you get the bounty ?
yup
It looks like pre account takeover
@@screamy_619 sometime luck counts
This is not a bug
@@unknowncontent328___________ sleep brother
@@ProwlSec bro i reported this bug in a website on bugcrowd . see what will be the result
I think it's SSO not OAuth
It is OAuth because he first signed in using google
that means binance , medium are vulnerable to this bug report it and get bounty
@@unknowncontent328___________ maybe