Adi "Adico" Cohen
XSS in Gmail's Amp4Email
Background AMP is most commonly used as a framework to develop fast-loading content on the web. One of AMP's projects, AMP4Email has been...
top of page
Search
Adi "Adico" Cohen
- Feb 24, 2019
- 4 min
JSON-based XSS exploitation
The following post describes a new method to exploit injections in JSON file - Back in 2012 Introduction: In the world of Web2.0 and mash...
2,6280
Adi "Adico" Cohen
- Feb 24, 2019
- 1 min
Microsoft Anti-XSS Library Bypass (MS12-007)
The following post describes the second bypass I found to the toStaticHTML function in IE - back in 2012. Introduction: The Microsoft...
1920
Adi "Adico" Cohen
- Feb 24, 2019
- 2 min
toStaticHTML: The Second Encounter (CVE-2012-1858)
The following post describes the second bypass I found to the toStaticHTML function in IE - back in 2012. Introduction: The toStaticHTML...
220
Adi "Adico" Cohen
- Feb 24, 2019
- 1 min
Internet Explorer 'toStaticHTML' HTML Sanitizing Information Disclosure Vulnerability CVE-2011-1252
The following post describes a bypass I found to the toStaticHTML function in IE - back in 2011. Introduction: The JavaScript function...
210
Adi "Adico" Cohen
- Feb 23, 2019
- 3 min
Microsoft Windows Shell Argument Injection - MS12-048 (CVE-2012-0175)
The following post describes a vulnerability I discovered, allowing the injection of arbitrary arguments into the command string of any...
840
bottom of page