CSS Injection | writeups.xyz

Title	Vulnerabilities	Programs	Authors
BBP Writeup Series #1 – Turning “useless” HTMLi on [REDACTED] into a P1	HTML Injection CSS Injection	Undisclosed	MLT (@0dayWizard)
Full Disclosure - DOM-based XSS And Failures In Bug Bounty Hunting	DOM XSS CSS Injection	Undisclosed	Kuldeep Pandya (@Kuldeepdotexe)
CSS Injection via PostMessages to stealing Credit Card Info	PostMessage CSS Injection	Undisclosed	Castilho (@Castilho101)
Unleashing the power of CSS injection: The access key to an internal API	CSS Injection	Undisclosed	Sander Wind (@SanderWind)
Practical Client Side Path Traversal Attacks	Path Traversal Client-Side Path Traversal Open Redirect CSS Injection	Acronis	Medi (@Medi_0ne)
A 250$ CSS Injection — My First Finding on Hackerone!	CSS Injection	Undisclosed	Dsonbacker
Getting Paid With Just Picking Color — Bug Bounty	CSS Injection	Undisclosed	Redza
The Underrated Bugs, Clickjacking, CSS Injection, Drag-Drop XSS, Cookie Bomb, Login+Logout CSRF…	CSS Injection Clickjacking Account Takeover XSS Cookie Bomb Self-XSS CSRF	Undisclosed	Renwa (@RenwaX23)
Keylogging users via Slack themes	CSS Injection	Slack	Matt Langlois (@Fletchto99)
Exfiltration via CSS Injection	CSS Injection	Undisclosed	D0nut (@D0nutptr)
Yahoo Login Protection Seal – Stored CSS Injection	CSS Injection	Yahoo! / Verizon Media	Brett Buerhaus (@Bbuerhaus)

Page 1 of 1