ioc[.]one - OSINT Cyber Threat Intelligence Database

Account Takeover Via Poising Forget Password Port in ASDA

Tags

attack-pattern:

Data Exploits - T1587.004 Exploits - T1588.005 Server - T1583.004 Server - T1584.004

Show in Graph

Common Information

Type	Value
UUID	fb668873-d4ce-46b3-a7af-89a240c2d060
Fingerprint	af96e59b1f523af5
Analysis status	DONE
Considered CTI value	0
Text language
Published	March 23, 2023, 8:50 p.m.
Added to db	March 23, 2023, 2:53 p.m.
Last updated	Nov. 17, 2024, 9:43 p.m.
Headline	Account Takeover Via Host Header Poisoning in ASDA
Title	Account Takeover Via Poising Forget Password Port in ASDA
Detected Hints/Tags/Attributes	36/1/20

Source URLs

	Redirection	Url
Details	Source	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=1601ef1bb010&source=rss----7b722bfd1b8d---4
Details	Source	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=3151d904eeb1&source=rss------infosec-5
Details	Redirection	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=64c99f016653&source=rss----7b722bfd1b8d---4
Details	Source	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=6af1f2f48d01&source=rss------infosec-5
Details	Redirection	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=70b49669fb3c&source=rss------infosec-5
Details	Redirection	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=af06418f78b2&source=rss----7b722bfd1b8d---4
Details	Redirection	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=be8cffb7a964&source=rss----7b722bfd1b8d---4
Details	Source	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?gi=e5210a7538da&source=rss----7b722bfd1b8d---4
Details	Redirection	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?source=rss------infosec-5
Details	Redirection	https://infosecwriteups.com/account-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75?source=rss----7b722bfd1b8d---4
Details	Redirection	https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Finfosecwriteups.com%2Faccount-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75%3Fsource%3Drss------infosec-5
Details	Redirection	https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Finfosecwriteups.com%2Faccount-takeover-via-poising-forget-password-port-in-asda-60f1a5417a75%3Fsource%3Drss----7b722bfd1b8d---4

URL Provider

Details	Provider	Source level domain
Details	infosecwriteups.com	infosecwriteups.com
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	136	✔	InfoSec Write-ups - Medium	https://infosecwriteups.com/feed	2024-08-30 22:08
Details	168	✔	Infosec on Medium	https://medium.com/feed/tag/infosec	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	831	example.com
Details	Domain	78	attacker.com
Details	Domain	208	hackerone.com
Details	Domain	18	site.com
Details	Domain	70	evil.com
Details	Domain	1	your-exploit-server-id.exploit-server.net
Details	Domain	105	domain.com
Details	Domain	1	xxxx.burpcollaborator.net
Details	Email	3	example@example.com
Details	Email	1	webmaster@domain.tld
Details	Email	1	domain.com@evil.com
Details	File	4	reset_password.php
Details	File	3	reset-password.php
Details	Url	1	https://hackerone.com/reports/226659
Details	Url	1	https://hackerone.com/reports/182670
Details	Url	1	https://hackerone.com/reports/229498
Details	Url	1	https://hackerone.com/reports/698416
Details	Url	1	https://attacker.com/forget-pass
Details	Url	1	https://hackerone.com/reports/158482
Details	Url	1	https://domain.tld