all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How I Found Multiple XSS Vulnerabilities Using Unknown Techniques

Add to bookmarks
March 5, 2024, 6:26 a.m. | Khaledyassen

InfoSec Write-ups - Medium infosecwriteups.com

Hello, everyone. I hope you are well.

بِسْمِ اللَّـهِ الرَّحْمَـٰنِ الرَّحِيمِ

Today I’m going to talk about Multiple XSS Attacks Using Different Techniques, which I discovered while working in various bug bounty programs.

XSS: (Cross-site scripting) is a security vulnerability that occurs when an attacker injects malicious scripts into web pages viewed by other users. XSS attacks aim to execute malicious scripts in the context of a victim’s browser, allowing the attacker to steal sensitive information. for example, in the …

bug bounty bug-bounty-tips cybersecurity hacking xss-attack

Visit resource

More from infosecwriteups.com / InfoSec Write-ups - Medium

Subdomain takeover via AWS s3 bucket 4 days, 4 hours ago | infosecwriteups.com
attacker attackers aws aws s3 +18
Understanding the CrowdStrike 2024 Global Threat Report 4 days, 4 hours ago | infosecwriteups.com
adversaries analysis assets critical +25
Prevent Cross-Site Scripting Attacks in Node.js 4 days, 4 hours ago | infosecwriteups.com
attacks continue cross-site cybersecurity +14
HTB: Bizness walkthrough 4 days, 4 hours ago | infosecwriteups.com
cybersecurity hackthebox htb htb-writeup +1
HTB Business CTF 2024 — Submerged (Fullpwn)— Write-up 4 days, 4 hours ago | infosecwriteups.com
ctf ctf-writeup cybersecurity ethical hacking +1
CozyHosting HTB Easy | Walkthrough 4 days, 4 hours ago | infosecwriteups.com
ctf ctf-writeup hacking hackthebox +1
Blind SQL Injection: Uncovering Administrator Password One Character at a Time-Lab9 4 days, 4 hours ago | infosecwriteups.com
admin burpsuite hacking portswigger +1
Unlocking Superpowers: How to Gain Root Access in Ubuntu and Defeat ‘User not sudoers’ Error 4 days, 4 hours ago | infosecwriteups.com
access administration elevate error +15
All About API Security Pentesting 4 days, 4 hours ago | infosecwriteups.com
api security api security testing bug bounty owasp-api-security-top-10 +1

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com