Category: XSS

Explore techniques for discovering and exploiting Cross-Site Scripting (XSS) vulnerabilities in web applications.

Posts

Showing 9 posts in this category.

sanitize-html-react Vulnerability

XSS1020
Internal testing, or 'blitzing', revealed flaws in the sanitize-html-react library, posing potential security risks. Discover alternatives and solutions.

BlankMediaGames / Town Of Salem XSS

XSS310
Discovered a potential XSS vulnerability in Town of Salem's API endpoint, reported to BlankMediaGames and promptly patched. Read more for technical details!

Finland MSN XSS Vulnerability

XSS1380
The search bar on Finland has a vulnerability that allows XSS attacks due to improper encoding of quotes. Learn more about this issue here.

CSE.UNSW.EDU.AU XSS Vulnerability

XSS9060
The staff search page at UNSW (CSE) is vulnerable to XSS attacks due to improper sanitization of the ID field input.

Mashable XSS Vulnerability

XSS1K0
Discover the Mashable subscription script vulnerability that exposes user emails and enables XSS attacks. Learn more about this security flaw.

ABC Mail XSS Vulnerability

XSS1.2K0
The ABC Mail subscription script has a vulnerability that allows XSS attacks due to unsanitized email input. Learn more about this security flaw.

Backlinks.com XSS Vulnerability

XSS1.3K0
Discover how a vulnerability in Backlinks.com's search form allows an XSS attack through unsanitized user input.

NineMSN Flights XSS Vulnerability

XSS7310
Discovered an XSS vulnerability on NineMSN's flights page. Learn how input sanitization flaws can lead to security breaches.

iiNet.net.au XSS Vulnerabilities

XSS5580
Discover two critical XSS vulnerabilities on iiNet's main search and Freezone pages, highlighting major security flaws in the Australian ISP's website.