Mahmoud HamedHow I Got $5,000 for Out-of-Scope XSSA few months ago, I received an invitation to a private bug bounty program on HackerOne. Initially, I did my usual testing and I discovered…Feb 2412Feb 2412
Mahmoud HamedTurning Self-XSS to Exploitable XSSIn this write-up, I will explain two cases of Self-XSS where I managed to escalate them into something impactful. Let’s jump right into the…Sep 25, 20235Sep 25, 20235