Back to directory

WRITEUP #90

Front-End Frameworks: When Bypassing Built-in Sanitization Might Backfire

XSSClient-side Path TraversalSecurity code review

by@scryh_(Stefan Schiller)

Program

Firefly III

Published

Aug 13, 2024

Added to HackDex

Aug 14, 2024

Read Full Writeuphttps://www.sonarsource.com/blog/front-end-frameworks-when-bypassing-built-in-sanitization-might-backfire/

▸ RELATED WRITEUPS

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Government Emails at Risk: Critical Cross-Site Scripting Vulnerability in Roundcube Webmail

XSSSecurity code review

Studying 0days: How we hacked Anki, the world's most popular flashcard app

RCEComponents with known vulnerabilities

We hacked Anki - 0 day exploit from studying someone elses flashcards

RCEComponents with known vulnerabilities

Getting code execution on Veeam through CVE-2023-27532

RCEInsecure deserialization

Built with ❤️ by Shubham Rawat