Write-Ups
Access to some admin endpoints with OAuth client credentials
The target is a fintech company that can centralize payments for companies and employees.
Access to all users data with OAuth client credentials
It is a real-world example of the OAuth client credentials attack vector.
