Exploits / Vulnerability Discovered : 2022-06-03 |
Type : webapps |
Platform : php
This exploit / vulnerability Microweber cms 1.2.15 account takeover is for educational purposes only and if it is used you will do on your own risk!
2. When the victim tries to login with default Oauth providers like Google,
Github, Microsoft, Twitter, Linkedin, Telegram or Facebook etc(auth login)
with that same e-mail id that we created account before, via this way we
can take over the victim's account with the recently created login
credentials.