Blog: Enabling Trusted Types in a Complex Web Application: A Case Study of AppSheetWant to know more about adopting Trusted Types to improve the security posture of an application? Take a look at our case study describing how we rolled out Trusted Types in AppSheet, a Google product.
SQL/コマンドインジェクション、XSS等を横串で理解する - 「インジェクション」脆弱性への向き合い方 - Flatt Security Blog
[HackerNotes Ep. 68]: 0-days & HTMX-SS with Mathias
Hacker TLDR;HTMX Bypasses CSP Bypass: HTMX triggers can be abused to bypass CSP’s via <img src=x hx-on:htmx:load='alert(0)' /> - full writeup below. Client-side response header injection to XSS: HTMX uses certain headers to help instruct the framework for certain behaviours. This can be abused via HX-Redirect: javascript:alert(1) for XSS if you can inject a response header. Bypassing hx-disable: h
![[HackerNotes Ep. 68]: 0-days & HTMX-SS with Mathias](https://cdn-ak-scissors.b.st-hatena.com/image/square/b8c65f4910e79834cfcddd21a60954a9a0dbb036/height=288;version=1;width=512/https%3A%2F%2Fbeehiiv-images-production.s3.amazonaws.com%2Fuploads%2Fpublication%2Flogo%2Ff3cc9f6e-341e-452a-9b50-a244bcc4cf92%2FCritical_Thinking_Podcast_Cover_Square.jpg)
XSS using dirty Content Type in cloud era
2024/3/31(土)開催のコミュニティイベント「Bsides Tokyo 2024」でのAzara、eiによるセッション資料です。 https://bsides.tokyo/2024/#xss-using-dirty-content-type-in-cloud-era
注目したいクライアントサイドの脆弱性2選/ Security.Tokyo #3
Security.Tokyo #3の発表資料です。 クライアントサイドのパストラバーサルと、postMessage経由の脆弱性を取り上げました。
CVE-2023-5480: Chrome new XSS Vector
Chrome XSSThe article is informative and intended for security specialists conducting testing within the scope of a contract. The author is not responsible for any damage caused by the application of the provided information. The distribution of malicious programs, disruption of system operation, and violation of the confidentiality of correspondence are pursued by law. PrefaceThis article is dedi
バグバウンティにおける XSS の具体的な脅威の事例まとめ - blog of morioka12
1. 始めに こんにちは、morioka12 です。 本稿では、バグバウンティで実際にあった脆弱性報告の事例をもとに、XSS の具体的な脅威(Impact)についていくつか紹介します。 1. 始めに 免責事項 想定読者 2. XSS (Cross Site Scripting) HackerOne Top 10 Vulnerability Types Escalation (Goal) 3. XSS の脅威 (Impact) 3.1 Response Body から Session ID の奪取 3.2 Local Storage から Access Token の奪取 3.3 IndexedDB から Session Data の奪取 3.4 メールアドレスの改ざん 3.5 パスワードの改ざん 3.6 管理者アカウントの招待 3.7 POST Based Reflected XSS 4.
DOM-based race condition: racing in the browser for fun
DisclaimerAll projects mentioned in this blog post have been contacted, and I confirmed that the behavior described in this article is either working as intended, already fixed, or will not be fixed. TL;DRThe browser loads elements in the HTML from top to bottom, and some JavaScript libraries retrieve data or attributes from the DOM after the page has been completely loaded. Because of how the con
Vue JS Reflected XSS
Hi guys, in this writeup I will be showing you how I was able to get a reflected XSS on a VueJS application. I found a vulnerable param named ‘?email=’ which was filtering all the tags. So I referred portswigger’s XSS cheatsheet to get hints for the payloads. The first thing you should do is check the technologies used in that application. So in my case it was an application which was based on Vue
SPAセキュリティ超入門 | ドクセル
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
content-type-research/XSS.md at master · BlackFan/content-type-research
GitHub - google/tsec
BHack Conference
Trusted Types · Issue #20 · mozilla/standards-positions%253C%2Fscript%253E%250A--MYBOUNDARY--)
https://terjanq.me/xss.php?h%5BContent-Security-Policy%5D=default-src%20'none'&h%5BContent-Type%5D=multipart/x-mixed-replace;%20boundary=MYBOUNDARY&html=--MYBOUNDARY%0AContent-Type:%20text/html%0AContent-Security-Policy:%20script-src%20'unsafe-inline'%0A%0Alol%3Cscript%3Ealert(1)%3C/script%3E%0A--MYBOUNDARY--
Chrome Platform Status
html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318) · Issue #62196 · golang/go
Escape "<" and ">" in attributes · Issue #6235 · whatwg/html
Intent to Deprecate and Remove: data: URL in SVGUseElement
<a href=javascript:alert(1) traget=_blank>XSS</a> behavior in modern browser.