Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 3936 | Exploiting JSONP and Bypassing Referer Check | Information disclosure JSONP | NA | Osama Avvan (@osamaavvan) | Bug Bounty | 2019-09-07 | 2023-06-13 |
| 3752 | Effortlessly finding Cross Site Script Inclusion (XSSI) & JSONP for bug bounty | XSSI | NA | Omkar Bhagwat (@th3_hidd3n_mist) | Bug Bounty | 2019-12-27 | 2023-06-13 |
| 3129 | Taking down the SSO, Account Takeover in the Websites of Kolesa due to Insecure JSONP Call | Account takeover | NA | Yashar Shahinzadeh (@YShahinzadeh) | Bug Bounty | 2020-09-28 | 2023-06-13 |
| 657 | $350 XSS in 15 minutes | DOM XSS JSONP | NA | Anton (@therceman) | Bug Bounty | 2022-12-23 | 2023-06-13 |
| 122 | A smorgasbord of a bug chain: postMessage, JSONP, WAF bypass, DOM-based XSS, CORS, CSRF… | postMessage JSONP DOM XSS CORS misconfiguration CSRF WAF bypass | NA | Julien Cretel (@jub0bs) | Bug Bounty | 2023-05-05 | 2023-06-13 |