2FA bypass :- 1) Create account and enable 2FA. 2)Now add your social account in profile 3)Make logout and sign in through Oauth you have added social account in profile 4) 2FA bypassed Bounty:€€€ 😁 #bugbountytips #bugbounty

@sivanesh_hacker How does bypassing your own 2FA makes sense? Isn't it Similar to, going to your profile settings and just disable your own 2FA? I think it's N/A or Informative P5. Or may be I am too dumb to understand this !

@sivanesh_hacker @savxiety I thought its a asusual feature on a best progg and left it😂😂Rip for me

@sivanesh_hacker Nice finding bro 🥳

@sivanesh_hacker N/A

@sivanesh_hacker +ve test case flow

@sivanesh_hacker Which platform, Intigriti?

@sivanesh_hacker Informative on hackerone. Already report such kind of issue but got informative.

@sivanesh_hacker Is this accepting?

@sivanesh_hacker @impratikdabhi What's the security impact here ?

@sivanesh_hacker @souravnewatia whats the vuln there?

@sivanesh_hacker What if you need 2FA to login into your social account which authorises the oauth 🤔