maride/hacktricks

mirror of https://github.com/HackTricks-wiki/hacktricks.git synced 2025-10-10 18:36:50 +00:00

Carlos Polop 972d01bc6b more migration typos

2025-01-05 21:30:07 +01:00

904 B

Raw Blame History

Phone Number Injections

{{#include ../banners/hacktricks-training.md}}

It's possible to add strings at the end the phone number that could be used to exploit common injections (XSS, SQLi, SSRF...) or even to bypass protections:

https://www.youtube.com/watch?app=desktop\&v=4ZsTKvfP1g0

https://www.youtube.com/watch?app=desktop\&v=4ZsTKvfP1g0

OTP Bypass / Bruteforce would work like this:

https://www.youtube.com/watch?app=desktop\&v=4ZsTKvfP1g0

References

https://www.youtube.com/watch?app=desktop&v=4ZsTKvfP1g0

{{#include ../banners/hacktricks-training.md}}