Discussion

Sergio Medeiros

Vulnerability Operations @ Synack. InfoSec's Village Idiot. Documenting my journey of pivoting out of a decade long sales career to breaking

Jun 12, 2024

CVE-2024-37629: Simple XSS Payload Exploits 0day Vulnerability in 10,000 Web Apps

Late one night, after working on a couple of bug bounty platforms, I decided to revisit a CVE I found last month. I realized that the web application had implemented the Summernote WYSIWYG Editor, which was the root cause of the stored XSS vulnerabil...

grumpz.net2 min read

#bugbounty #hacking #penetration-testing #bugs-and-errors #bootstrap #javascript #javascript-library #javascript-framework #pentesting #webdev #appsec #application-security #cybersecurity-1 #ethicalhacking #cve

Responses

No responses yet.

Search Hashnode

CVE-2024-37629: Simple XSS Payload Exploits 0day Vulnerability in 10,000 Web Apps

Responses

Recent in Forum