bug-bounty448
google354
xss341
microsoft283
facebook246
apple171
exploit163
rce160
malware102
account-takeover95
cve91
bragging-post84
csrf83
browser77
writeup76
privilege-escalation68
react60
authentication-bypass57
cloudflare54
dos53
node52
ssrf51
docker51
phishing50
aws48
access-control47
oauth45
smart-contract45
supply-chain44
ethereum43
defi42
web342
sql-injection41
lfi37
idor35
smart-contract-vulnerability32
vulnerability-disclosure32
web-application31
burp-suite31
reverse-engineering31
clickjacking31
race-condition31
info-disclosure31
wordpress30
cloud29
input-validation29
information-disclosure29
web-security27
solidity27
cors26
0
1/10
ScraperNode is a web scraping API platform that provides pre-built scrapers for multiple social media and job listing platforms including LinkedIn, Instagram, TikTok, and others, designed to integrate with automation workflows like n8n and custom AI applications.
web-scraping
api
social-media
data-extraction
automation
linkedin
instagram
tiktok
twitter
youtube
facebook
ScraperNode
n8n
OpenClaw
LinkedIn
Instagram
TikTok
Twitter/X
YouTube
Facebook
Indeed
Glassdoor
Yelp
GitHub
Crunchbase
0
8/10
Jonathan Bouman discovered a persistent XSS vulnerability in LinkedIn's article embed feature by exploiting unvalidated Open Graph tags, specifically the og:video tag, to inject malicious HTML and create fake phishing login screens that could steal user credentials. The vulnerability leverages LinkedIn's content embedding functionality which processes Open Graph metadata without proper validation, allowing attackers to inject arbitrary content into iframes on LinkedIn articles.
persistent-xss
open-graph
oembed
html-injection
phishing
embed-manipulation
login-phishing
iframe-breakout
responsible-disclosure
bug-bounty
linkedin
Jonathan Bouman
LinkedIn
YouTube
Medium
Twitter
Vimeo
Wordpress
SnappySnippet
Burp Suite