Back to directory
WRITEUP #1639

DOM-XSS in Instant Games due to improper verification of supplied URLs

XSSDOM XSS
by@samm0uda(Youssef Sammouda)
Bounty
62,500
Program
Meta / Facebook
Published
Jan 29, 2023
Added to HackDex
Jan 31, 2023
Read Full Writeuphttps://ysamm.com/?p=779
RELATED WRITEUPS
Lessons Learned From Exposing Unusual XSS Vulnerabilities
XSSDOM XSS
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass

Built with ❤️ by Shubham Rawat