Pop-Ups in a good-world

by Guilherme Keerok Introduction This research was fun to do and I believe it addresses some cool and theoretically interesting techniques, some things have already been reported, and others, due to the format that these technologies were made, don’t need to be reported, as several techniques here are considered by design in browsers. One of the main themes that I tried to focus on this research was not to use CSRF so I tried to do something similar, maybe a “CSWF” (Cross-Site Window Forgery), this is just a joke, but yes, without CSRF but with a little bit of Clickjacking. …

Posted on

Object Injection to SQL Injection

by Walleson Moura (@phor3nsic_br) NodeJS + Sqlstring In this section, we will explain a curious case of sql injection, a possible scenario, details of the issue, possible impacts and mitigations. What is Object Injection? Object Injection is an application-level vulnerability that could allow an attacker to execute different types of malicious methods, such as Code Injection, SQL Injection, Path Traversal and Application Denial of Service, depending on the context. …

Posted on

A short story about an XSS in chat.mozilla.org (CVE-2021-21320)

by Guilherme Keerok In the last month, some friends and I have founded @duph0use, a house where we spent the last month doing bug bounties, researching, and working. At some point during the time I was there, I started searching for bugs in Mozilla, which led me to find 3 XSSes. In this post I will only be showing one of these findings. While I navigated through Mozilla products, I ended up finding chat. …

Posted on