Back to directory
WRITEUP #4806

Hacking — Always Check the Cross-domain Policy

CSRFSOP bypass
byJack
Bounty
750
Program
Starbucks
Published
Mar 19, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/the-volatile-triad/hacking-always-check-the-cross-domain-policy-369940372de3
RELATED WRITEUPS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover
Vulnerabilities in Homepage Dashboard
RCESSRF
AI Under Siege: Discovering and Exploiting Vulnerabilities
AI / LLMAI
How Almost Sacrificing a University Group Project led to a Microsoft Bug Bounty
XSSCSRF

Built with ❤️ by Shubham Rawat