- Visit the CWP Control Panlel url :
- Enter a valid username and any email address (here the attacker will put his email id) Capture the request in Burp Suite
Click Forward
In the next intercept, change the value "0" to "1"
Forward the request
Created
September 14, 2023 17:40
-
-
Save fir3storm/ac219fe6deb237828ff86dd8cba5a9d7 to your computer and use it in GitHub Desktop.
CWP Web Control Panel "Recover Password" component bypass
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment