PortSwigger Web Academy: Stealing OAuth Tokens Via Open Redirect
Vulnerability Chaining for Account Takeover
5 min readNov 11, 2023
Hello, World! This blog post will serve as a walkthrough of PortSwigger’s Web Academy OAuth lab called “Stealing OAuth access tokens via an open redirect.” Let’s go for it!