writeups.xyz
/
Castilho (@Castilho101)
Title
Vulnerabilities
Programs
Authors
Kanboard - Spraying Malicious Tasks Across all Projects
Broken Access Control
Stored XSS
CSP Bypass
Kanboard
Castilho (@Castilho101)
CSS Injection via PostMessages to stealing Credit Card Info
PostMessage
CSS Injection
Undisclosed
Castilho (@Castilho101)
CVE-2022-0478 - WooCommerce Event-Manager Plugin SQL Injection
SQL Injection
Security Code Review
Automattic (WooCommerce)
Castilho (@Castilho101)
Page 1 of 1
writeups.xyz
/
Castilho (@Castilho101)