Back to directory
WRITEUP #4510

Hunting postMessage Vulnerabilities

XSSpostMessageDOM XSS
by@garyoleary(Gary O'Leary-Steele)
Bounty
6,267.40
Program
AppleGoogle (Youtube)Adobe
Published
Jul 14, 2020
Added to HackDex
Jan 6, 2023
Read Full Writeuphttps://web.archive.org/web/20211016075506/https://insight.claranet.co.uk/technical-blogs/hunting-postmessage-vulnerabilities
RELATED WRITEUPS
Lessons Learned From Exposing Unusual XSS Vulnerabilities
XSSDOM XSS
Universal Code Execution by Chaining Messages in Browser Extensions
XSSUniversal XSS
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS

Built with ❤️ by Shubham Rawat