Back to directory
WRITEUP #1101

Turning a 50$ Tab-Nabbing vulnerability into a 1000$ Account takeover

XSSReverse tabnabbingStored XSSSelf-XSSAccount takeover
by@MalekMohamed0(Malek Mohamed)
Bounty
1,000
Program
-
Published
Jun 6, 2023
Added to HackDex
Jun 6, 2023
Read Full Writeuphttps://medium.com/@malekmahmed55/turning-a-50-tab-nabbing-vulnerability-into-a-1000-account-takeover-9c3f32cb2d84
RELATED WRITEUPS
Self-XSS to ATO via Site Features
XSSSelf-XSS
Stored XSS in LibreOffice
XSSStored XSS
Persistent XSS on Microsoft Bing.com by poisoning Bingbot indexing
XSSStored XSS
Canary Token OSS Security Audit Report (Q2 2024)
XSSDoS
Type confusion attacks in ProseMirror editors
XSSType confusion

Built with ❤️ by Shubham Rawat