bug-bounty504
google358
xss310
microsoft301
facebook265
rce221
exploit213
malware168
apple164
cve142
account-takeover116
bragging-post102
privilege-escalation98
csrf92
phishing86
browser80
writeup78
supply-chain69
authentication-bypass69
dos68
stored-xss65
ssrf57
reflected-xss57
reverse-engineering55
react54
access-control52
aws49
input-validation49
cross-site-scripting48
docker47
cloudflare47
lfi47
web-security46
node46
ctf45
sql-injection45
smart-contract45
ethereum44
web-application44
web343
defi43
oauth43
race-condition40
open-source39
auth-bypass39
pentest39
cloud38
idor37
burp-suite36
info-disclosure36
0
7/10
bug-bounty
A stored XSS vulnerability was discovered in a web application's 'Save for later' feature by bypassing WAF protections using Unicode-encoded HTML characters and event handlers. The attacker crafted a payload with Unicode escapes (e.g., \u003E for >, \u0045 in onmouseleave) to evade signature-based filtering and achieved POST-based XSS that was chainable with CSRF for authenticated users.
xss
waf-bypass
unicode-encoding
parameter-pollution
stored-xss
csrf
event-handler
html-injection
web-application-firewall
Prial Islam Khan