| 1992 | Exploitation Of CVE-2021-21220 – From Incorrect JIT Behavior To RCE |
Browser hacking
Memory corruption
RCE |
Google
Microsoft |
Bruno Keith (@bkth_) |
Bug Bounty | 2021-12-16 | 2023-06-13 |
| 1892 | Hacking the Apple Webcam (again) |
Universal XSS
Browser hacking |
Apple |
Ryan Pickren |
Bug Bounty | 2022-01-25 | 2023-06-13 |
| 1771 | webOS Revisited - Even More Mistaken Identities |
Local Privilege Escalation
Browser hacking |
LG |
Andreas Lindh (@addelindh) |
Bug Bounty | 2022-03-02 | 2023-06-13 |
| 1713 | CVE-2022-0337 System environment variables leak on Google Chrome, Microsoft Edge and Opera |
Browser hacking |
Google
Microsoft
Opera |
Maciej Pulikowski (@pulik_io) |
Bug Bounty | 2022-03-19 | 2023-06-13 |
| 1490 | Extracting Clear-Text Credentials Directly From Chromium’s Memory |
Browser hacking |
Google (Chromium) |
Zeev Ben Porat |
Bug Bounty | 2022-06-08 | 2023-06-13 |
| 1481 | A Story of a Bug Found Fuzzing |
Browser hacking
Memory corruption |
Google
Microsoft |
Abdulrhman Alqabandi (@qab) |
Bug Bounty | 2022-06-11 | 2023-06-13 |
| 1186 | But You Told Me You Were Safe: Attacking The Mozilla Firefox Renderer (Part 1) |
Browser hacking
RCE
Prototype pollution |
Mozilla |
Hossein Lotfi (@hosselot) |
Bug Bounty | 2022-08-23 | 2023-06-13 |
| 1109 | Step-by-Step Walkthrough of CVE-2022-32792 - WebKit B3ReduceStrength Out-of-Bounds Write |
Memory corruption
Browser hacking
Out-of-bounds Write |
Apple |
Daniel Lim (@daniellimws) |
Bug Bounty | 2022-09-08 | 2023-06-13 |
| 946 | Guest Blog Post - Memory corruption vulnerabilities in Edge |
Browser hacking
Memory corruption
Use-After-Free
Out-of-bounds Read
Out-of-bounds Write |
Microsoft |
David Erceg (@david_erceg) |
Bug Bounty | 2022-10-17 | 2023-06-13 |
| 881 | Safari is hot-linking images to semi-random websites |
Browser hacking
XSS |
Apple |
Gareth Heyes (@garethheyes) |
Bug Bounty | 2022-10-31 | 2023-06-13 |
| 850 | Jit-Picking: Differential Fuzzing of JavaScript Engines |
Browser hacking |
Mozilla |
Lukas Bernhard (@bernhl) |
Bug Bounty | 2022-11-09 | 2023-06-13 |
| 822 | Chromium: Same Origin Policy bypass within a single site a.k.a. "Google Roulette" |
SOP bypass
Browser hacking |
Google (Chromium) |
Michał Bentkowski (@SecurityMB) |
Bug Bounty | 2022-11-16 | 2023-06-13 |
| 599 | Google Chrome “SymStealer” Vulnerability: How to Protect Your Files from Being Stolen |
Local Privilege Escalation
Browser hacking
Symbolic link following |
Google (Chrome & Chromium) |
Ron Masas (@RonMasas) |
Bug Bounty | 2023-01-11 | 2023-06-13 |
| 592 | How Browser’s Save As Feature might lead to Code Execution (CVE-2022–45415) |
RCE
Browser hacking |
Mozilla (Firefox) |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2023-01-14 | 2023-06-13 |
| 365 | Hacking the Nintendo DSi Browser |
Memory corruption
Use-After-Free
Browser hacking |
Nintendo |
Nathan Farlow (@0x1337cafe) |
Bug Bounty | 2023-03-02 | 2023-06-13 |
| 226 | Discovering Headroll (CVE-2023–0704) in Chromium |
SOP bypass
Browser hacking |
Google (Chromium) |
Rhys Elsmore (@rhyselsmore) |
Bug Bounty | 2023-04-05 | 2023-06-13 |
