bug-bounty457
google361
microsoft312
facebook267
xss250
apple177
malware176
rce165
exploit140
cve111
account-takeover104
bragging-post101
phishing84
privilege-escalation82
csrf81
supply-chain68
stored-xss65
authentication-bypass63
dos62
browser61
reflected-xss57
react52
cloudflare50
reverse-engineering49
input-validation48
cross-site-scripting48
node47
aws47
access-control47
docker46
smart-contract45
ethereum44
defi43
sql-injection43
web342
web-security42
ssrf42
web-application41
writeup37
oauth37
race-condition36
burp-suite35
vulnerability-disclosure34
info-disclosure34
idor34
cloud33
auth-bypass33
html-injection33
smart-contract-vulnerability32
buffer-overflow32
0
7/10
A researcher discovered a chain of vulnerabilities in OneDrive OAuth integration: loose redirect_uri validation accepting partial path matches combined with a CSRF-vulnerable API callback endpoint (/api/testCallback?callback_url=) allowed stealing OAuth authorization codes and access tokens from authenticated users.
csrf
oauth
open-redirect
redirect-uri-validation
authentication-bypass
third-party-integration
onedrive
microsoft-oauth
access-token-theft
api-security
callback-validation
OneDrive
Microsoft
login.live.com
Arbaz Hussain
HackerOne