character-encoding-bypass

3 articles
sort: new top best
clear filter
bug-bounty450 google358 microsoft315 facebook265 xss239 apple181 malware172 rce149 exploit131 bragging-post101 cve99 account-takeover93 phishing82 csrf79 privilege-escalation77 stored-xss64 supply-chain64 authentication-bypass62 dos60 reflected-xss57 browser56 react50 cloudflare49 reverse-engineering48 input-validation48 cross-site-scripting47 access-control47 docker46 smart-contract45 node45 aws45 web344 ethereum43 sql-injection42 defi42 web-security40 ssrf40 web-application39 burp-suite35 idor34 vulnerability-disclosure34 info-disclosure34 race-condition33 cloud33 buffer-overflow33 html-injection33 smart-contract-vulnerability32 oauth32 writeup32 information-disclosure30
0 6/10
XSS because of wrong content type header
bug-bounty

XSS vulnerability in InternShala discovered via a JSON endpoint with incorrect text/html content-type header, exploited through multiple filter bypasses including whitespace replacement with +, confirm() instead of alert(), backticks for parentheses, and URL encoding for closing tags.

xss content-type-bypass filter-bypass csrf json-response html-injection event-handler-injection character-encoding-bypass web-application
InternShala.com Noman Shaikh
bugbaba.blogspot.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details
0 8/10
Reflected XSS on amazon.com
vulnerability

A reflected XSS vulnerability on Amazon's masclient endpoint (/gp/masclient/dp/) allows attackers to inject arbitrary HTML/JavaScript by exploiting insufficient input validation and capitalization of product IDs. The author demonstrates cookie theft and session hijacking via SVG onload attributes with HTML entity encoding to bypass browser XSS protections.

reflected-xss xss cookie-theft html-injection amazon android-app apk-decompilation character-encoding-bypass xss-auditor-evasion svg-onload html-entity-encoding url-encoding jscrew jjencode octal-encoding phishing session-hijacking
amazon.com Jonathan Bouman Scroll.am Vue.js AWS Codestar AWS Lambda Chrome XSS Auditor Firefox jscrew.it jjencode
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details
0 7/10
Filter bypass to Reflected XSS on finance.yahoo.com (mobile version)
bug-bounty

A reflected XSS vulnerability was discovered on Yahoo Finance's mobile version via the /quote/ endpoint. The attacker bypassed filters that converted lowercase characters to uppercase by using HTML entity encoding (e.g., a for 'a') to evade the case-sensitivity filter and successfully execute JavaScript.

reflected-xss filter-bypass html-encoding character-encoding-bypass mobile-version yahoo finance.yahoo.com svg-payload case-sensitivity-bypass
finance.yahoo.com Samuel Yahoo
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details