Back to directory

WRITEUP #437

CSP bypass on PortSwigger.net using Google script resources

OtherCSP bypass

by@joaxcar(Johan Carlsson)

Bounty

1,500

Program

PortSwigger

Published

Feb 19, 2024

Added to HackDex

Feb 27, 2024

Read Full Writeuphttps://joaxcar.com/blog/2024/02/19/csp-bypass-on-portswigger-net-using-google-script-resources/

▸ RELATED WRITEUPS

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Part 2: From Byovdll To Arbitrary Code Execution In Lsass

OtherUse-After-Free

Built with ❤️ by Shubham Rawat