AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
11min chapter
Episode 111: How to Bypass DOMPurify in Bug Bounty with Kevin Mizu
Critical Thinking - Bug Bounty Podcast
Vulnerabilities in DOMPurify Sanitization
This chapter examines specific security vulnerabilities related to DOMPurify, particularly the improper sanitization of attributes that can lead to potential exploitations. It underscores the importance of understanding the operation of HTML sanitization tools rather than attempting to modify them, as such changes may introduce new vulnerabilities. Furthermore, the discussion covers complex techniques for bypassing DOM sanitization and emphasizes the need for a deep understanding of underlying code mechanisms to address these security issues.
00:00
Transcript
Episode notes
Get the Snipd
podcast app
Unlock the knowledge in podcasts with the podcast player of the future.
AI-powered
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode
Save any
moment
Hear something you like? Tap your headphones to save it with AI-generated key takeaways
Share
& Export
Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more
AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode