Back to directory
WRITEUP #4181

Content-Security-Policy Bypass to perform XSS using MIME sniffing

XSSCSP bypass
by@kleiton0x7e(Kleiton Kurti)
Program
-
Published
Dec 10, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://kurtikleiton.medium.com/content-security-policy-bypass-to-perform-xss-3c8dd0d40c2e
RELATED WRITEUPS
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN
XSSCSP bypass
Type confusion attacks in ProseMirror editors
XSSType confusion
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS

Built with ❤️ by Shubham Rawat