xss-hunter

3 articles
sort: new top best
clear filter
bug-bounty449 google357 microsoft315 facebook267 xss238 apple181 malware175 rce148 exploit127 bragging-post101 cve100 account-takeover93 phishing83 csrf79 privilege-escalation77 stored-xss65 supply-chain65 authentication-bypass62 dos60 browser58 reflected-xss57 react51 cloudflare49 input-validation48 reverse-engineering48 cross-site-scripting48 access-control47 docker46 smart-contract45 aws45 node45 ethereum43 web343 sql-injection42 defi42 web-application41 web-security40 ssrf38 burp-suite35 vulnerability-disclosure34 idor34 info-disclosure34 race-condition33 buffer-overflow33 html-injection33 cloud33 writeup32 oauth32 smart-contract-vulnerability32 information-disclosure30
0 8/10
How I pwned a company using IDOR and Blind XSS
bug-bounty

A company was compromised by chaining an IDOR vulnerability in a support ticket API with a blind XSS vulnerability in the internal ticket management system. The attacker leveraged blind XSS to extract ticket IDs (which were otherwise hard to brute-force), then used IDOR to access a password reset ticket from Slack that contained registration links to company channels.

idor blind-xss vulnerability-chaining support-portal ticket-system api-security xss-hunter account-takeover bug-bounty web-application
Inti De Ceukelaire Harsh Jaiswal XSS Hunter Slack Facebook Workplace
ansariosama.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details
0 5/10
How I found Blind XSS vulnerability in redacted.com
vulnerability

Walkthrough of discovering a blind XSS vulnerability using XSS Hunter and Burp Suite by injecting a malicious payload into the Referer header, which was stored and later executed when accessed by administrators or logged-in users.

blind-xss xss cross-site-scripting web-application-security xss-hunter burp-suite vulnerability-detection payload-injection bug-bounty
XSS Hunter Burp Suite newp_th Matthew Setter
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details
0 8/10
Poisoning the well compromising godaddy customer support with blind XSS
vulnerability

A researcher discovered a blind XSS vulnerability in GoDaddy's internal customer support panel by injecting XSS payloads into user profile fields (first/last name), which executed when support agents accessed the CRM system. The vulnerability allowed arbitrary actions on customer accounts including domain transfers and account deletion, demonstrating how data poisoning can compromise backend systems drawing from shared data stores.

blind-xss stored-xss customer-support internal-panel dom-based-xss xss-hunter data-poisoning bug-bounty godaddy input-validation output-encoding session-hijacking beef-hook
GoDaddy XSS Hunter Cobalt BeEF crm.int.godaddy.com sso.godaddy.com
thehackerblog.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details