Write-ups
Check The Published Writeups
WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
---|---|---|---|---|---|---|---|
4740 | Reading Your Emails With A Read&Write Chrome Extension Same Origin Policy Bypass (~8 Million Users Affected) | SOP bypass Browser extension hacking | NA | Matthew Bryant (@IAmMandatory) | Bug Bounty | 2018-06-05 | 2023-06-13 |
4733 | Steam, Fire, and Paste – A Story of UXSS via DOM-XSS & Clickjacking in Steam Inventory Helper | DOM XSS Universal XSS Clickjacking Browser extension hacking | NA | Matthew Bryant (@IAmMandatory) | Bug Bounty | 2018-06-08 | 2023-06-13 |
1989 | Yes, fun browser extensions can have vulnerabilities too! | XSS Browser extension hacking postMessage | Meow | Wladimir Palant (@WPalant) | Bug Bounty | 2021-12-20 | 2023-06-13 |
1739 | Party time: Injecting code into Teleparty extension | HTML injection Open redirect Browser extension hacking | Teleparty | Wladimir Palant (@WPalant) | Bug Bounty | 2022-03-14 | 2023-06-13 |