Back to directory
WRITEUP #6583

From self-XSS, through AI, to tenant takeover

AI / LLMXSS
byKacper Tomporowski ( magsy )
Published
Mar 12, 2026
Added to HackDex
Mar 13, 2026
Read Full Writeuphttps://mgsy.dev/en/posts/xss-prompt-injection/
RELATED WRITEUPS
From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms
AI / LLMAI
Self-XSS to ATO via Site Features
XSSSelf-XSS
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack
XSS
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective
AI / LLMAI
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk
AI / LLMCI/CD

Built with ❤️ by Shubham Rawat