S1r1us (@S1r1u5_) | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Remote Code Execution on Element Desktop Application using Node Integration in Sub Frames Bypass - CVE-2022-23597	RCE XSS	Matrix (Element)	S1r1us (@S1r1u5_) Maxwell Garrett (@TheGrandPew)
Discord Desktop - Remote Code Execution	RCE XSS Sandbox Bypass CSP Bypass	Discord	S1r1us (@S1r1u5_) Ptr-Yudai (@PtrYudai)
Visual Studio Code - Remote Code Execution in Restricted Mode (CVE-2021-43908)	RCE XSS	Microsoft	S1r1us (@S1r1u5_) Maxwell Garrett (@TheGrandPew)
"A tale of making internet pollution free" - Exploiting Client-Side Prototype Pollution in the wild	Prototype Pollution XSS	Apple Atlassian Mozilla HubSpot Segment Analytics	Sergey Bobrov (@Black2fan) S1r1us (@S1r1u5_) Terjanq (@Terjanq) Beomjin Lee (@Po6ix) Masato Kinugawa (@Kinugawamasato) Nikita Stupin (@_Nikitastupin) Rahul Maini (@Iamnoooob) Harsh Jaiswal (@Rootxharsh) Mikhail Egorov (@0ang3el) Melar Dev (@Melardev)
Cookie Tossing to RCE on Google Cloud JupyterLab	Self-XSS DoS CSRF RCE	Google	S1r1us (@S1r1u5_)
SSTI in Google Maps	SSTI	Google	S1r1us (@S1r1u5_)

Page 1 of 1