| Chromium: Same Origin Policy bypass within a single site a.k.a. "Google Roulette" |
|
|
|
| Issue 1040755: Security: Another "universal" XSS via copy&paste |
|
|
|
| The Curious Case of Copy & Paste – on risks of pasting arbitrary content in browsers |
|
|
|
| XSS in GMail’s AMP4Email via DOM Clobbering |
|
|
|
| Another XSS in Google Colaboratory |
|
|
|
| Vulnerability in Hangouts Chat a.k.a. how Electron makes open redirect great again |
|
|
|
| XSS in Google Colaboratory + CSP bypass |
|
|
|
| Setting arbitrary request headers in Chromium via CRLF injection |
|
|
|
writeups.xyz
/
Michał Bentkowski (@SecurityMB)