Navigation:   Dark C0d3rs Exploit Log Research Papers/Vulnerability reports HackerOne Disclosed Reports - 2025-10-21

HackerOne Disclosed Reports - 2025-10-21

0 Replies, 132 Views

 hashXploiter

   10-22-2025, 12:30 PM
Administrator
#1
Logo
Medium
resolved

2FA bypass possible on https://authsvc.singlestore.com


Bug reported by Axolot was disclosed at October 22, 2025, 6:44 am   |   Authentication Bypass

A vulnerability was discovered that allowed the 2FA authentication mechanism to be bypassed completely. An attacker could access the victim's account by only knowing the email address and password, without requiring the 2FA code.


[Image: e72398fe92beda2aa80d0329e8b9f4febece7568.gif]

Messages In This Thread
HackerOne disclosed reports - 2025-10-21 - by hashXploiter - 10-22-2025, 12:30 PM



Users browsing this thread: 1 Guest(s)