Back to directory
WRITEUP #2430

Discord Desktop - Remote Code Execution

RCEXSSSandbox bypassCSP bypass
by@s1r1u5_(s1r1us)
Bounty
5,000
Program
Discord
Published
Jul 29, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://blog.electrovolt.io/posts/discord-rce/
RELATED WRITEUPS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass
From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms
AI / LLMAI
Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
RCEConfusion attack
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities
We hacked Anki - 0 day exploit from studying someone elses flashcards
RCEComponents with known vulnerabilities

Built with ❤️ by Shubham Rawat