Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4718Setting arbitrary request headers in Chromium via CRLF injection CRLF injection Google Michał Bentkowski (@SecurityMB) Bug Bounty2018-06-202023-06-13
4716XSS in Google Colaboratory + CSP bypass XSS CSP bypass Google Michał Bentkowski (@SecurityMB) Bug Bounty2018-06-212023-06-13
4677Vulnerability in Hangouts Chat a.k.a. how Electron makes open redirect great again Open redirect RCE Google Michał Bentkowski (@SecurityMB) Bug Bounty2018-07-242023-06-13
4574Another XSS in Google Colaboratory XSS Google Michał Bentkowski (@SecurityMB) Bug Bounty2018-09-202023-06-13
3826XSS in GMail’s AMP4Email via DOM Clobbering XSS DOM Clobbering Google Michał Bentkowski (@SecurityMB) Bug Bounty2019-11-182023-06-13
3428The Curious Case of Copy & Paste – on risks of pasting arbitrary content in browsers XSS Google Mozilla Michał Bentkowski (@SecurityMB) Bug Bounty2020-06-022023-06-13
3328Issue 1040755: Security: Another "universal" XSS via copy&paste Universal XSS Browser hacking Google (Chromium) Michał Bentkowski (@SecurityMB) Bug Bounty2020-07-062023-06-13
822Chromium: Same Origin Policy bypass within a single site a.k.a. "Google Roulette" SOP bypass Browser hacking Google (Chromium) Michał Bentkowski (@SecurityMB) Bug Bounty2022-11-162023-06-13