bhagwa's post | Pingpad

Bhagwa@bhagwa·May 04

Client-side template injection vulnerabilities are still present in vulnerable targets and are not only limited to AngularJS apps!

Here are 5 useful resources for understanding & exploiting CSTI vulnerabilities in case you haven't found any!

Post by @bhagwa

bh
Bhagwa@bhagwa·May 04
Portswigger: Adapting AngularJS payloads to exploit real world applications

portswigger.net/research/adapting-angularjs-payloads-to-exploit-real-world-applications
0
bh
Bhagwa@bhagwa·May 04
PortSwigger: XSS without HTML: Client-Side Template Injection with AngularJS

portswigger.net/research/xss-without-html-client-side-template-injection-with-angularjs
0
bh
Bhagwa@bhagwa·May 04
Intigriti: Client side template injection (CSTI) - November XSS Challenge Writeup
www.youtube.com/watch?v=-_7uL7l0qZk
0
bh
Bhagwa@bhagwa·May 04

Hacktricks: Client Side Template Injection (CSTI)
book.hacktricks.xyz/pentesting-web/client-side-template-injection-csti

0
bh
Bhagwa@bhagwa·May 04

PortSwigger: Client-side template injection
portswigger.net/web-security/cross-site-scripting/contexts/client-side-template-injection

0

Welcome to pingpad!

This is a beta, we would love to hear what you think!

ToS Privacy GitHub Discord About

© 2024 Pingpad v0.8