XSS in Google Colaboratory + CSP bypass

Post Reply
kim
Posts: 182
Joined: Fri Jun 22, 2018 10:35 pm
Has thanked: 0
Been thanked: 2 times
Contact:

XSS in Google Colaboratory + CSP bypass

Post by kim » Sun Jul 01, 2018 8:22 pm

through a bug in the MathJax library library i was able to get an xss payload to fire in Google Colaboratory app and using script gadgets i was able to bypass Content-Security-Policy. So here's the full writeup



Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest