EN | Race Condition to Users Limit Bypass in Add User Function
EN | Account Takeover via Web Cache Poisoning based Reflected XSS
EN | Clickjacking to Account Takeover via Drag&Drop
EN | Alert-box Message Content Manipulation based Base64
EN | Account Takeover and Sensitive Data Leakage via CORS Misconfiguration
EN | Stored XSS with Password Recovery Page