Back to directory
WRITEUP #1424

Rxss inside href attribute - Bypassing lots of weird checks to takeover accounts!

XSSReflected XSSWAF bypass
by@maniacmarvel_(Ashutosh Dutta)
Bounty
2,000
Program
-
Published
Mar 10, 2023
Added to HackDex
Mar 15, 2023
Read Full Writeuphttps://infosecwriteups.com/rxss-inside-href-attribute-bypassing-lots-of-weird-checks-to-takeover-accounts-b4c8b4e70877
RELATED WRITEUPS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass
A Story About How I Found XSS in ASUS
XSS

Built with ❤️ by Shubham Rawat