Pentest: From Customer to Full Application Takeover

By Zeyad Azima IntroductionWelcome everyone! In addition to my regular work, I take on some pentesting projects as a freelancer for various clients. Today, I’m excited to share a particularly interesting bug that started as a seemingly straightforward XSS vulnerability but ultimately led to a full application takeover. Application OverviewThe application ..