Name: DOM Purify Type Confusion by @slonser_
Uploaded: 2024-04-06T18:14:25+00:00
Description: DOM Purify Type Confusion by @slonser_ How? 1. DOM Purify converts XML tags to HTML comment tags 2. Leaving the closing bracket empty, escapes to an HTML context al…

DOM Purify Type Confusion by @slonser_

How?

1. DOM Purify converts XML tags to HTML comment tags
2. Leaving the closing bracket empty, escapes to an HTML context allowing for onerror="alert(1)" and other fun stuff!

Join the Email List

DOM Purify Type Confusion by @slonser_

Listen On

Recent Episodes