| Privileged account creation via Mass Assignment towards a full compromise using a Stored XSS |
|
|
|
| Stored XSS To Other Users Via Messages |
|
|
|
| Small bugs are more dangerous than you think |
|
|
|
| How I managed to trigger XSS automatically to get critical account takeover |
|
|
|
| My First Bug on VDP & BBP - Bug Bounty |
|
|
|
| A Tale of Open Redirection to Stored XSS |
|
|
|
| CVE-2022-24948: Apache JSPWiki preauth Stored XSS to ATO |
|
|
|
| Stored XSS in message.alibaba.com ($2,000) |
|
|
|
| How I Made $16,500 Hacking CDN Caching Servers — Part 1 |
|
|
|
| Stored Cross-Site Scripting in MediaWiki |
|
|
|
| Bug Hunting Journey of 2021 |
|
|
|
| SVG based Stored XSS |
|
|
|
| Account Takeover via Stored XSS |
|
|
|
| CVE-2021-40662 Chamilo LMS 1.11.14 RCE |
|
|
|
| Write Up – XSS Stored In api.media.atlassian.com Via Doc File (iOS) |
|
|
|
| Moodle - Stored XSS and blind SSRF possible via feedback answer text |
|
|
|
| Stored XSS in the administrator’s panel due to misuse of MarkupSafe |
|
|
|
| Privilege Escalation to stored XSS |
|
|
|
| Zero-Day: Hijacking iCloud Credentials with Apple Airtags (Stored XSS) |
|
|
|
| Microsoft Azure Portal – Persistent Cross-Site Scripting |
|
|
|
| Bug Bounty Guest Post: Local File Read via Stored XSS in The Opera Browser |
|
|
|
| MonkeyType.com Stored Cross-Site Scripting |
|
|
|
| Multiple Vulnerabilities In cPanel/WHM |
|
|
|
| Escalating Self-XSS To Stored XSS via Image injection + IDOR |
|
|
|
| Stored XSS in Google Doubleclick Studio [Google Research Grant] |
|
|
|
writeups.xyz
/
Stored XSS