The bug bounty program Intigriti hosts an XSS challenge every month. This time, the challenge was about bypassing CSP by reloading a VueJS instance, getting able to exploit a client side template injection. My solution can be summarized in 4 main steps: Finding reflection and achieving HTML Injection Accessing an abusable piece of code, containing […]
- info@hacktivesecurity.com
- Mon - Fri: 9.00 am - 6.00 pm
Advanced Security Solutions to protect the Cyberspace.