경로 및 정보
Hacking Swagger-UI - from XSS to account takeovers
wtdsoul
2023. 11. 2. 22:37
https://blog.vidocsecurity.com/blog/hacking-swagger-ui-from-xss-to-account-takeovers/
Hacking Swagger-UI - from XSS to account takeovers
We have reported more than 60 instances of this bug across a wide range of bug bounty programs including companies like Paypal, Atlassian, Microsoft, GitLab, Yahoo, ...
blog.vidocsecurity.com