X (Formerly Twitter): CSRF and probable account takeover on https://www.niche.co

The researcher discovered that Niche’s CSRF protection was broken and that an attacker could trick a logged-in user into changing account information under the /account endpoint, including email address. This would not have enabled account takeover, however, since Niche does not handle account...

X (Formerly Twitter): CORS misconfig | Account Takeover

Summary: CORS misconfig is found on niche.co as Access-Control-Allow-Origin is dynamically fetched from client Origin header with credential true and different methods are enabled as well. Description: Basically, the application was only checking whether "//niche.co" was in the Origin header, tha...

X (Formerly Twitter): Unauthorized Access to Protected Tweets via niche.co API

Hello, Summary: Normally If user victim set to private / protect their tweets in setting Tweet privacy, other people/user will not able to see their recent or their pass status/twits when they visit his/her victim profile. people only can see their victim profile images and information about how...

X (Formerly Twitter): URGENT : NICHE.co Account Take Over Vulnerability

Hello ! This is an urgent report that you should immediately take care of !! I found out an account take over vulnerability on your acquisition : niche.co Proof of concept code CSRF Attack Page: /get-started/complete s The authenticitytoken parameter is not properly validated by the end of the...