writeups.xyz writeups.xyz / Monke (@Pmofcats)

Title Vulnerabilities Programs Authors
Exfiltrating Data from Sandboxed Documents
XSS by Javascript Overriding
A Case Study of API Vulnerabilities - Part 2, and Empty Heads
A Case Study of API Vulnerabilities
4 Crits in 48 hours: Unicorn Programs
Oauth client secret leak and possible IDOR leading to PII Disclosure
Stored XSS on the DuckDuckGo search results page