-
On a recent pentest I was able to chain an Open Redirect + XSS to exfiltrate session tokens, only needing for a user to click on a link. Open Redirect on redirectUrl While browsing the site, I noticed that the…
-
Week in Review – #24
To revive the blog I will begin a Week in Review series, where I write some notes about my previous week doing bug bounty work, with some ideas, notes and reflections of the process and what I’ve done. I used to do…
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
Lautaro Colombo 