Exfiltration via CSS Injection

d0nut
Jul 25, 2018 · 4 min read

The Problem

Screenshot of the PoC written for our recent CSS injection CSRF token exfiltration report

The Future

Closing Remarks

InfoSec Write-ups

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties and CTFs to vulnhub machines, hardware challenges and real life encounters. In a nutshell, we are the largest InfoSec publication on Medium. #sharingiscaring

d0nut

Written by

d0nut

Security Engineer at Dropbox and part-time bug hunter

InfoSec Write-ups

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties and CTFs to vulnhub machines, hardware challenges and real life encounters. In a nutshell, we are the largest InfoSec publication on Medium. #sharingiscaring