I Forgot Your Password - Pwning Modern Password Recovery Systems Through JSON Injections

Explore a conference talk from TROOPERS18 that delves into the vulnerabilities of modern password recovery systems through JSON injections. Learn how speakers Nahuel D. Sánchez and Martin Doyhenard expose potential security flaws in password reset mechanisms. Discover the risks associated with JSON-based implementations and gain insights into protecting against these exploits. Understand the implications for SAP security and broader cybersecurity practices. Enhance your knowledge of secure password recovery design and implementation strategies to safeguard user accounts and sensitive information.