string-escaping

1 article
sort: new top best
clear filter
bug-bounty498 google355 xss301 microsoft298 facebook263 rce211 exploit200 malware171 apple164 cve136 account-takeover115 bragging-post102 privilege-escalation95 csrf90 phishing86 browser75 writeup74 authentication-bypass69 supply-chain68 dos66 stored-xss65 reflected-xss57 ssrf56 reverse-engineering55 react52 access-control51 input-validation49 cross-site-scripting48 aws47 cloudflare47 docker46 web-security46 lfi46 sql-injection45 smart-contract45 ethereum44 web-application44 web343 defi43 ctf43 oauth43 node43 pentest40 race-condition39 idor37 open-source37 cloud37 burp-suite36 info-disclosure36 auth-bypass35
0 7/10
Magic XSS with two parameters
vulnerability

A stored XSS vulnerability in iframe-based cookie-setting functionality is exploited by chaining two parameters (key and value) to bypass WAF filters and Chrome XSS Auditor protections. The attacker uses newline injection and script tag splitting across multiple parameters to inject arbitrary JavaScript execution (alert(document.cookie)).

xss cross-site-scripting parameter-injection waf-bypass chrome-xss-auditor-bypass cookie-injection javascript-injection string-escaping newline-injection multi-parameter-payload
Google Chrome XSS Auditor Mahmood Shahabi
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 23 hours ago · details