Jan. 15, 2023, 3:04 a.m. | Jayateertha Guruprasad

InfoSec Write-ups - Medium infosecwriteups.com

Few days ago, while I was exploring browser based bugs, I read a article over internet explaining about a path traversal vulnerability in Safari browser using Save Page As Feature.
The file name was generated from content of <title></title> tag.
If title tag contained ../ characters, The file could be saved in a directory other than desired or default Downloads directory. (If anyone finds the article, feel free to mention the article link in comments)

I wanted to …

browser browsers bug bounty code code execution cve cybersecurity hacking infosec

Palo Alto Engineer

@ Booz Allen Hamilton | Undisclosed Location - USA, VA, Reston

Systems Administrator

@ Cognosante | Camp Humphreys, South Korea

Consultor de Seguridad de la Información (Future project)

@ Unisys | Home Based Peru

Cloud DevOps Engineer

@ Booz Allen Hamilton | USA, VA, McLean (8283 Greensboro Dr, Hamilton)

Cloud DevOps Engineer

@ Booz Allen Hamilton | USA, VA, McLean (8251 Greensboro Dr)

Sr. Systems Administrator

@ KBR, Inc. | USA, Colorado Springs, 2424 Garden of the Gods Rd, Colorado