Riding the Waves of API Versioning: Unmasking a Stored XSS Vulnerability, CSP Bypass Using YouTube… | allinfosecnews.com

Nov. 16, 2023, 7:10 a.m. | SMHTahsin33

InfoSec Write-ups - Medium infosecwriteups.com

Riding the Waves of API Versioning: Unmasking a Stored XSS Vulnerability, CSP Bypass Using YouTube OEmbed

Hello, as some of you already know me, I’m Syed Mushfik Hasan Tahsin aka SMHTahsin33. And for those who doesn’t, I’m a 19 Y/O Cyber Security Enthusiast from Bangladesh with 3+ years of experience. And passionately doing Bug Bounties in my free time solely out of curiosity. I am an eWPTXv2 as well.

> Target Mapping : Discovering the Attack Surface

The target …

web-app-pentesting web app security xss-attack

More from infosecwriteups.com / InfoSec Write-ups - Medium

Private Interact.sh server setup with a web dashboard 2 days, 5 hours ago | infosecwriteups.com

bug bounty cybersecurity hacking tools +1

Understanding 403 Bypass: A Critical Vulnerability in Web Application Security 3 days, 5 hours ago | infosecwriteups.com

403 bypass access application applications +28

Hack Stories: Hacking Hackers EP:3 4 days, 5 hours ago | infosecwriteups.com

big bug bounty cybersecurity hack +9

Mastering Shodan Search Engine 5 days, 6 hours ago | infosecwriteups.com

bug bounty bug-bounty-tips cybersecurity information security +1

Email Verification Bypass via Remember Me 5 days, 6 hours ago | infosecwriteups.com

bug bounty cybersecurity hacking pentesting +1

Exploiting Symlinks: A Deep Dive into CVE-2024–28185 and CVE-2024–28189 of Judge0 Sandboxes 5 days, 6 hours ago | infosecwriteups.com

attacks code code execution continue +15

Typo Trouble: Exploring the Telegram Python RCE Vulnerability 5 days, 6 hours ago | infosecwriteups.com

address alerts application concept +25

Active DNS Recon using AXIOM 5 days, 6 hours ago | infosecwriteups.com

bug bounty bug-bounty-tips cybersecurity infosec +1

Information Disclosure: Story of 500€ + 400$ Bounty 5 days, 6 hours ago | infosecwriteups.com

bug bounty cybersecurity hacking information technology +1

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Security Officer Hospital Laguna Beach

@ Allied Universal | Laguna Beach, CA, United States

View on infosec-jobs.com

Sr. Cloud DevSecOps Engineer

@ Oracle | NOIDA, UTTAR PRADESH, India

View on infosec-jobs.com

Cloud Operations Security Engineer

@ Elekta | Crawley - Cornerstone

View on infosec-jobs.com

Cybersecurity – Senior Information System Security Manager (ISSM)

@ Boeing | USA - Seal Beach, CA

View on infosec-jobs.com

Engineering -- Tech Risk -- Security Architecture -- VP -- Dallas

@ Goldman Sachs | Dallas, Texas, United States

View on infosec-jobs.com