WRITEUP #3770

Injecting Punycode URL Within the Arbitrary Text via Comment Box In Google Photo Sharing Option

OtherHTML injection

by@justm0rph3u5(Divyanshu Shukla)

Program

Google

Published

May 5, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://justm0rph3u5.medium.com/injecting-punycode-url-within-the-arbitrary-text-via-comment-box-in-google-photos-sharing-option-8b424065deb3

▸ RELATED WRITEUPS

500$ From Meta by reporting a HTMLi(Accidental Bug)

OtherHTML injection

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

OtherSSTI

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Built with ❤️ by Shubham Rawat