Back to directory

WRITEUP #299

CVE-2024-4367 – Arbitrary JavaScript execution in PDF.js

XSS

by@thomasrinsma(Thomas Rinsma)

Program

Mozilla (PDF.js)

Published

May 20, 2024

Added to HackDex

Jun 5, 2024

Read Full Writeuphttps://codeanlabs.com/blog/research/cve-2024-4367-arbitrary-js-execution-in-pdf-js/

▸ RELATED WRITEUPS

Self-XSS to ATO via Site Features

How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN

A Story About How I Found XSS in ASUS

Built with ❤️ by Shubham Rawat