| 5284 | Framing, Part 1: Click-Jacking Etsy |
Clickjacking |
Etsy |
Jack Whitton (@fin1te) |
Bug Bounty | 2013-02-05 | 2023-06-13 |
| 5247 | Google Docs %27ClickJacking%27 (Information Disclosure) |
Clickjacking |
Google |
Matt Austin (@mattaustin) |
Bug Bounty | 2014-05-13 | 2023-06-13 |
| 5182 | Facebook ClickJacking – How we put a new dress on Facebook UI |
Clickjacking |
Meta / Facebook |
Mohamed A. Baset |
Bug Bounty | 2016-04-22 | 2023-06-13 |
| 5181 | Official Telegram Web Client ClickJacking Vulnerability – When crypto is strong and client is weak |
Clickjacking |
Telegram |
Mohamed A. Baset |
Bug Bounty | 2016-04-28 | 2023-06-13 |
| 5180 | WhatsApp Clickjacking Vulnerability – Yet another web client failure! |
Clickjacking |
Meta / Facebook |
Mohamed A. Baset |
Bug Bounty | 2016-05-04 | 2023-06-13 |
| 5177 | FirefoxOS Find My Device Service Clickjacking Bug results in Changing PINs, Wiping and Locking Phones! |
Clickjacking |
Mozilla |
Mohamed A. Baset |
Bug Bounty | 2016-05-12 | 2023-06-13 |
| 5171 | Microsoft Yammer Clickjacking – Exploiting HTML5 Security Features |
Clickjacking |
Microsoft |
Mohamed A. Baset |
Bug Bounty | 2016-05-18 | 2023-06-13 |
| 5154 | BMW Vulnerabilities – Hijack Cars ConnectedDrive™ Service! |
Clickjacking
CSRF |
BMW |
Mohamed A. Baset |
Bug Bounty | 2016-07-24 | 2023-06-13 |
| 5065 | Stored XSS, CSRF And Clickjacking Vulnerabilities in Opera |
Stored XSS
CSRF
Clickjacking |
Opera |
Rafay Baloch (@rafaybaloch) |
Bug Bounty | 2017-06-01 | 2023-06-13 |
| 5033 | ctrl+c & ctrl+v to Steal SESSIONID |
Clickjacking |
NA |
Arbaz Hussain (@ArbazKiraak) |
Bug Bounty | 2017-07-18 | 2023-06-13 |
| 5026 | Self XSS to Good XSS Clickjacking |
XSS
Clickjacking |
NA |
Arbaz Hussain (@ArbazKiraak) |
Bug Bounty | 2017-07-20 | 2023-06-13 |
| 4981 | Chaining Self XSS with UI Redressing is Leading to Session Hijacking (PWN users like a boss) |
Self-XSS
Clickjacking |
NA |
Armaan Pathan (@armaancrockroax) |
Bug Bounty | 2017-09-18 | 2023-06-13 |
| 4845 | Re-dressing Instagram – Leaking Application Tokens via Instagram ClickJacking Vulnerability! |
Clickjacking |
Meta / Facebook |
Mohamed A. Baset |
Bug Bounty | 2018-02-25 | 2023-06-13 |
| 4840 | Clickjackings in Google worth 12644.7$ |
Clickjacking |
Google |
Raushan Raj (@raushan_rajj) |
Bug Bounty | 2018-03-06 | 2023-06-13 |
| 4744 | How I Earned $750 Bounty Reward From AT&T bug Bounty -Adesh Kolte |
RCE
Clickjacking
XSS
Same Origin Method Execution |
AT&T |
Adesh Nandkishor kolte (@AdeshKolte) |
Bug Bounty | 2018-06-01 | 2023-06-13 |
| 4733 | Steam, Fire, and Paste – A Story of UXSS via DOM-XSS & Clickjacking in Steam Inventory Helper |
DOM XSS
Universal XSS
Clickjacking
Browser extension hacking |
NA |
Matthew Bryant (@IAmMandatory) |
Bug Bounty | 2018-06-08 | 2023-06-13 |
| 4704 | The $12,000 Intersection between Clickjacking, XSS, and Denial of Service |
Clickjacking
XSS
DoS |
Bustabit |
Sam Curry (@samwcyo) |
Bug Bounty | 2018-07-04 | 2023-06-13 |
| 4672 | Binary.com ClickJacking Vulnerability — Exploiting HTML5 Security Features |
Clickjacking |
Binary.com |
Ameer Assadi (@AmeerAssadi) |
Bug Bounty | 2018-07-28 | 2023-06-13 |
| 4589 | Reflected DOM XSS and CLICKJACKING on https://silvergoldbull.de/bt.html |
DOM XSS
Clickjacking |
Silver Gold Bull |
Daniel Maksimovic |
Bug Bounty | 2018-09-13 | 2023-06-13 |
| 4547 | Clickjacking in Google Docs and Voice typing feature. |
Clickjacking |
Google |
Raushan Raj (@raushan_rajj) |
Bug Bounty | 2018-10-05 | 2023-06-13 |
| 4507 | Improper CSRF token handling leads to site-wide CSRF issue, chained with clickjacking = woot! Multiple sites vulnerable |
CSRF
Clickjacking |
NA |
Zseano (@zseano) |
Bug Bounty | 2018-10-29 | 2023-06-13 |
| 4484 | Clickjacking on Google MyAccount Worth 7,500$ |
Clickjacking |
Google |
apapedulimu / Nosa Shandy (@LocalHost31337) |
Bug Bounty | 2018-11-11 | 2023-06-13 |
| 4482 | Chain exploitation of XSS |
DOM XSS
Clickjacking
CSRF |
NA |
Mikhail Klyuchnikov (@__Mn1__) |
Bug Bounty | 2018-11-12 | 2023-06-13 |
| 4398 | How I accidentally found a clickjacking “feature” in Facebook |
Clickjacking |
Meta / Facebook |
Lasq (@lasq88) |
Bug Bounty | 2018-12-21 | 2023-06-13 |
| 4311 | I Found Clickjacking on Google CSE. Is This Important? |
Clickjacking |
Google |
Mukhammad Akbar (@abaykandotcom) |
Bug Bounty | 2019-02-10 | 2023-06-13 |
