writeups.xyz / Exfiltrating AWS Credentials via PDF Rendering of Unsanitized Input

Submitter : c2a

Date: 1 March 2023

Bounty : undisclosed

Vulnerabilities :

• SSRF
• HTML Injection
• XSS

Programs :

• Undisclosed

Authors :

• Cristi Vlad (@CristiVlad25)

Link :
https://cristivlad.medium.com/exfiltrating-aws-credentials-via-pdf-rendering-of-unsanitized-input-63f39d60d963