writeups.xyz writeups.xyz / SOP Bypass

Title Vulnerabilities Programs Authors
Universal Code Execution by Chaining Messages in Browser Extensions
CVE-2022-4908: SOP bypass in Chrome using Navigation API
Google Extensions (Awarded $18833.7)
Discovering Headroll (CVE-2023–0704) in Chromium
Chromium: Same Origin Policy bypass within a single site a.k.a. "Google Roulette"
Using Hackability to uncover a Chrome infoleak
Adobe Acrobat hollowing out same-origin policy
My Hacking Adventures With Safari Reader Mode
Android : SOP Bypass to steal system files.
Hacking — Always Check the Cross-domain Policy
SOP Bypass
SOP Bypass via browser-cache
Same-Origin Policy: From birth until today
Google sites and exploiting same origin policy
Exploiting a Microsoft Edge Vulnerability to Steal Files
Reading Your Emails With A Read&Write Chrome Extension Same Origin Policy Bypass (~8 Million Users Affected)
A Tale Of Another SOP Bypass In Android Browser < 4.4
Android Browser Same Origin Policy Bypass < 4.4 - CVE-2014-6041