Chioma Ibeakanma's blog
Series

Vulnerabilities with Chioma Ibeakanma

Articles in this series

Unauthorized Privilege Escalation Vulnerability via Role Manipulation

Sep 7, 20244 min read

Privilege escalation vulnerabilities pose a serious threat in many applications, allowing unauthorized users to gain access to higher-level...

Unauthorized Privilege Escalation Vulnerability via Role Manipulation

Exploiting Weak JWT HMAC Secrets: From Account Takeover to Admin Privilege Escalation

Sep 1, 20245 min read

Weak JWT HMAC secrets are like leaving your front door key under the mat—easy for attackers to find and exploit. In today’s applications, JWTs are...

Exploiting Weak JWT HMAC Secrets: From Account Takeover to Admin Privilege Escalation

Account Takeover via Password Reset (Disclosed Tokens)

Aug 15, 20242 min read

Account takeover (ATO) vulnerabilities occur when an attacker gains unauthorized access to a user's account. One common vector for ATO vulnerabilities...

Account Takeover via Password Reset (Disclosed Tokens)