Stay up to date with Payatu blog
Analysis of CVE-2020-11930: Reflected XSS in GTranslate WordPress module
Story: Few months back I was reading a security news on one of the famous news site, and by mistake I typed some characters in the URL and then the site responded with an obvious 404 page. At that tim...
Executing scripts in Safari Reader Mode to CSP Bypass
Reading mode is a feature implemented in most browsers that allow users to read articles in a clutter-free view i.e rendering a page in a way that will be easy to read without any distraction. Her...
massCode Code execution (CVE-2020-8548)
A few days back I was looking for a tool to maintain my notes and important code snippets and I came across a tool called massCode. About massCode massCode is one of the free and open-source c...
microsoft edge extensions host-permission bypass (cve-2019-0678)
A browser extension is a plug-in that extends the functionality of a web browser....