| Hacking Swagger-UI - from XSS to account takeovers |
|
|
|
| What Bypassing Razer's DOM-based XSS Patch Can Teach Us |
|
|
|
| Solving DOM XSS Puzzles |
|
|
|
| Stumbling across a DOM XSS on google.com |
|
|
|
| 5 Different Vulnerabilities in Google’s Threadit |
|
|
|
| Multi Domain DOM Cross Site Scripting |
|
|
|
| Finding DOM Polyglot XSS in PayPal the Easy Way |
|
|
|
| Security and Privacy of Social Logins (II): PostMessage Security in Single Sign-On |
|
|
|
| Facebook DOM Based XSS using postMessage |
|
|
|
| Hunting postMessage Vulnerabilities |
|
|
|
| Blast from the past: Cross Site Scripting on the AWS Console |
|
|
|
| $20000 Facebook DOM XSS |
|
|
|
| DOM-Based XSS at accounts.google.com by Google Voice Extension. |
|
|
|
| DOM XSS Walkthrough |
|
|
|
| DOM XSS in Gmail with a little help from Chrome |
|
|
|
| Drop the mic?! no! Drop the connection ;) |
|
|
|
| BugBounty | A Dom Xss |
|
|
|
| DOM-Based XSS | Bug Bounty Writeup |
|
|
|
| DOM Based XSS in Private Program |
|
|
|
| Clickjacking DOM XSS on Google.org |
|
|
|
| From http:// domain to res:// domain xss by using IE Adobe’s PDF ActiveX plugin |
|
|
|
| [DOM based XSS] Or why you should not rely on Cloudflare too much |
|
|
|
| Chain exploitation of XSS |
|
|
|
| DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and More |
|
|
|
| Reflected DOM XSS and CLICKJACKING on https://silvergoldbull.de/bt.html |
|
|
|
writeups.xyz
/
DOM XSS