Hello everyone, I hope you are doing well. Today I’m gonna explain one of my findings, by which I was able to bypass the email verification feature of a web application by using hidden form fields. As this was a private program, so I’ll assume it as example.com.

Overview

According to…


  1. You were provided with a link to a web application at http://54.212.122.94:8080/ which consists of a Contact Us form.

2. Let’s try to fill the form and submit it and check what requests are being sent using Burp suite.

3. To configure Burp Suite with your browser you can install…

Yash Swarup

A Cybersecurity Enthusiast

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store