Account takeover on ███████ [HtUS]

Hello, I have found an endpoint in ████████ is vulnerable to Account takeover Steps to reproduce: 1. Create 2 accounts ( Attacker ( A ) and vicitm ( B ) ) 2. Log in to all of them and go to https://███████/███████/EditUserProfile with attacker's account 3. Now fill out the password with your password 4. Change the attacker's [email protected] email with victim's email [email protected] 5. Click Submit button and forward the request to repeater 6. Now if the vicim tried to log into his account, he will facing an error 7. Back to the request go to repeater and change the User id of the attacker with the vicim's user ID ( You probley need to brute-force it ) 8. Forward the request and you will see 302 code response 9. Stay in the request and change back all changes ( EMAIL and USER ID of Attacker ) and send the request again 9. Now try to log into the victim's [email protected] account with your password 10. You will be logged in POC: ████ ## Impact An attacker can takeover accounts