The $12,000 Intersection between Clickjacking, XSS, and Denial of Service

from blog Blog | Sam Curry, | ↗ original
The specific application that I've been targeting over the last few weeks is a bitcoin gambling website where a stock will progressively rise over time. The gambler decides the amount of money they would like to put in and a multiplier to payout at. As the multiplier goes up, they have an option to click a button and receive whatever returns they...
This is a short summary. ↗ Open original to view full content

Related

Learnings from years of technological progress wasted
Koos Looijesteijn - Everything | original ↗
The complex simplicity of my static websites
Copper • A blog about conductive layers | original ↗
Exploiting Directory Traversal to View Customer Credit Card Information on Yahoo's Small Business Platform
Blog | Sam Curry | original ↗
Hacking a Massive Steam Scamming and Phishing Operation for Fun and Profit
Blog | Sam Curry | original ↗
Filling in the Blanks: Exploiting Null Byte Buffer Overflow for a $40,000 Bounty
Blog | Sam Curry | original ↗
Abusing HTTP Path Normalization and Cache Poisoning to steal Rocket League accounts
Blog | Sam Curry | original ↗
Hacking Chess.com and Accessing 50 Million Customer Records
Blog | Sam Curry | original ↗
Books: Web Application Security: Exploitation and Countermeasures for Modern Web Applications
JJinuxLand | original ↗
Investable Desiderata
Casey Rodarmor's Blog | original ↗
An Elixir based payment processor for the Coinparty hackathon
Jonas Hietala | original ↗

More from Blog | Sam Curry

Hacking Kia: Remotely Controlling Cars With Just a License Plate
20 Sept 2024 | original ↗

On June 11th, 2024, we discovered a set of vulnerabilities in Kia vehicles that allowed remote control over key functions using only a license plate. These attacks could be executed remotely on any hardware-equipped vehicle in about 30 seconds, regardless of whether it had an active Kia Connect subscription.

Hacking Millions of Modems (and Investigating Who Hacked My Modem)
3 Jun 2024 | original ↗

Two years ago, something very strange happened to me while working from my home network. I was exploiting a blind XXE vulnerability that required an external HTTP server to smuggle out files, so I spun up an AWS box and ran a simple Python webserver to receive the traffic from the vulnerable server.

Leaked Secrets and Unlimited Miles: Hacking the Largest Airline and Hotel Rewards Platform
3 Aug 2023 | original ↗

Between March 2023 and May 2023, we identified multiple security vulnerabilities within points.com, the backend provider for a significant portion of airline and hotel rewards programs. These vulnerabilities would have enabled an attacker to access sensitive customer account information, including names, billing addresses, redacted credit card...

Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More
3 Jan 2023 | original ↗

While we were visiting the University of Maryland, we came across a fleet of electric scooters scattered across the campus and couldn't resist poking at the scooter's mobile app. To our surprise, our actions caused the horns and headlights on all of the scooters to turn on and stay on for 15 minutes straight.

Exploiting Web3's Hidden Attack Surface: Universal XSS on Netlify's Next.js Library
21 Sept 2022 | original ↗

On August 24th, 2022, we reported a vulnerability to Netlify affecting their Next.js "netlify-ipx" repository which would allow an attacker to achieve persistent cross-site scripting and full-response server side request forgery on any website out of the box.