DOM clobbering in CTF: https://github.com/ctfs/write-ups/tree/master/hack-lu-ctf-2014/hotcows-dating … also could use textarea w/user interaction - IMG src solution is wrong though->META works
-
-
@mathias HackingForSoju, though I never solved it completely :) Was looking for JSONP-alert-as-callback kind of attacks mostlyThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
JavaScript, HTML, CSS, HTTP, performance, security, Bash, Unicode, i18n, macOS.