Back to directory
WRITEUP #3625

Finding DOM Polyglot XSS in PayPal the Easy Way

XSSDOM XSSCSP bypass
by@garethheyes(Gareth Heyes)
Program
Paypal
Published
Jun 30, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://portswigger.net/research/finding-dom-polyglot-xss-in-paypal-the-easy-way
RELATED WRITEUPS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass
Type confusion attacks in ProseMirror editors
XSSType confusion
Lessons Learned From Exposing Unusual XSS Vulnerabilities
XSSDOM XSS
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS

Built with ❤️ by Shubham Rawat