Anchor/area tags can leak page URLs (origin, path, query, post-click fragment) by using href="#" with the ping attribute pointing elsewhere.
Works in Chrome and Safari (Firefox disables ping by default).
https://t.co/SVt05u6Hxs
اولین مقاله م به فارسی. توضیح یکی از باگ هام:
Zero Click ATO
فلو یا تریک خاصی نیس. صرفا ریکانه و درک اپلیکیشن
امیدوارم خوشتون بیاد
https://t.co/Nm2GbOh1DC
Quick Tip: Hunting CORS? Go beyond payloads. In DevTools → debugger, search for regex / RegExp and grab any domains you see. Test them as Origins — broken regex on trusted domains can = bypass 🚨 And don’t forget: some may be purchasable 👀
#bugbountytip#bugbountytips
Just found an interesting behavior in Firefox that can be used for XSS:
If a response lacks the Content-Type header, Firefox renders it as text/plain.
But if the URL ends with an extension like .html, Firefox treats it as that.
#bugbounty#bugbountytips