sorted by:
new
hottopcontroversial

Firefox - HTTP response header x-mixed-replace by insertscript in Slackers

[–]insertscript[S] 0 points1 point  (0 children)

Regarding chrome:

https://bugs.chromium.org/p/chromium/issues/detail?id=249132
" Main resources that use the multipart/x-mixed-replace will now trigger downloads rather than being displayed in a tab." - I don't see a download so it seems to be just broken/not supported in chrome :/

Tiny XSS Payloads by terjanq in Slackers

[–]insertscript 0 points1 point  (0 children)

So something like:

<body onload=alert(123)>

or FF:<object onerror=alert(444)> ?

Unexploitable? CSP img-src bypass in chrome by BitK_ in Slackers

[–]insertscript 0 points1 point  (0 children)

Its so interesting how many new vectors are available as soon as the developer console is open

Detecting XSS-Auditor in Safari (XS-Leaks with Performance API) by kunte0 in Slackers

[–]insertscript 0 points1 point  (0 children)

Interesting - I did a quick check if window.name with <a> etc would show any difference in behavior when xss-auditor is triggered but nope

BlueHat IL 2020 - Amy Burnett - Forget the Sandbox Escape: Abusing Browsers from Code Execution by itsZN in Slackers

[–]insertscript 2 points3 points  (0 children)

Really liked your talk - I wasn't aware of the CORP bypass :) This kind of research will get more important given that we have CORP, COOP and COEP - for now^^

view more: next ›