Critical Thinking - Bug Bounty Podcast cover image

Episode 79: The State of CSS Injection - Leaking Text Nodes & HTML Attributes

Critical Thinking - Bug Bounty Podcast

CHAPTER

Exploiting CSS Injection for Data Exfiltration

This chapter explores the sophisticated techniques of CSS injection, focusing on how vulnerabilities can be exploited for data leakage rather than simply mitigated. It delves into methods like sequential import chaining and the innovative use of CSS selectors to extract sensitive HTML attributes, especially in modern web applications. The discussion highlights historical contexts and recent research, emphasizing the urgent need for security measures amidst evolving web technologies.

00:00
Transcript
Play full episode

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner