DEV Community

Harsha Hegde
Harsha Hegde

Posted on

1

Instagram flaw

#security

There is a security flaw in instagram in updating the email Id. Here is how you can exploit.

  1. Create a instagram account, use your genuine email Id
  2. Once the signup is complete, log off
  3. Now go to instagram and say forgot password.
  4. Instagram will send a mail to the email and in bottom there is a link to 'Remove your email from this account.'
  5. Click on that link
  6. Now your instagram account is delinked with the email address
  7. Now again Try to log into account using your instagram Id, now provide the password.
  8. In next screen you will be asked to provide the email Id to link.
  9. In above step you can provide any email Id (if not used in instagram), there is no verfication required!!

Top comments (2)

Collapse
 
moopet profile image
Ben Sinclair

No verification apart from the valid username and password, right?

Collapse
 
harshakhegde profile image
Harsha Hegde

Yes.

profile
Heroku
 Promoted

Heroku

Simplify your DevOps and maximize your time.

Since 2007, Heroku has been the go-to platform for developers as it monitors uptime, performance, and infrastructure concerns, allowing you to focus on writing code.

Learn More

Read next

vdelitz profile image

Ensuring Successful Passkey Deployment: Testing Strategies for Enterprises

vdelitz -

donesrom profile image

How to Protect Your Cloud Infrastructure from DDoS Attacks

Donesrom -

jajera profile image

Configure SSH Login from Windows to Windows

John Ajera -

jajera profile image

Configuring AWS Vault with the Pass Backend for Secure Credential Management on Linux

John Ajera -

👋 Kindness is contagious

Please leave a ❤️ or a friendly comment on this post if you found it helpful!

Okay