Back to directory
WRITEUP #3362

"A tale of making internet pollution free" - Exploiting Client-Side Prototype Pollution in the wild

XSSPrototype pollution
by@black2fan(Sergey Bobrov)
Bounty
12,600
Program
AppleAtlassianMozillaHubSpotSegment Analytics
Published
Sep 28, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://blog.s1r1us.ninja/research/PP
RELATED WRITEUPS
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass
A Story About How I Found XSS in ASUS
XSS

Built with ❤️ by Shubham Rawat