CTFtime.org

Bypasses Everywhere

by Corb3nik / OpenToAll

Tags: xss csp web 

Rating:

Bypassing Chrome's XSS auditor + CSP using iframes.

Original writeup (https://corb3nik.github.io/blog/ins-hack-2019/bypasses-everywhere).

Comments