{"uuid": "143c69f6-55dd-475c-9346-05714960b432", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-22056", "type": "published-proof-of-concept", "source": "https://t.me/HelixsCrewOfficial/151", "content": "FROM INTERNET\n\n1)DOM XSS through ads\nhttps://hackerone.com/reports/889041\n\n2)IDOR leads to 2fa Bypass\nhttps://medium.com/@arthbajpai277/idor-leads-to-2fa-bypass-3331cec2db64\n\n3)Critical XSS in chrome extension\nhttps://medium.com/@p3rr0x22/critical-xss-in-chrome-extension-b55757a2074\n\n4)Cross Site Port Attack in Wild\nhttps://thehemdeep.medium.com/cross-site-port-attack-in-wild-9d2f6af36455\n\n5)Stealing administrative JWT's through post auth SSRF (CVE-2021-22056)\nhttps://blog.assetnote.io/2022/01/17/workspace-one-access-ssrf/\n\n6)Full SSRF by exporting PDF\nhttps://amakki.me/full-ssrf-by-exporting-pdf-bbe1bfde24c4\n\n7)My Pentest Log -3-\nhttps://hcibo.medium.com/my-pentest-log-3-a0d15eb0de72\n\n8)Day 14, Set Up Environment for Pentesting #100DaysofHacking\nhttps://infosecwriteups.com/day-14-set-up-environment-for-pentesting-100daysofhacking-f8069e91fcd2\n\n9)Jobs in Cybersecurity\nhttps://medium.com/@vijayynot108/jobs-in-cybersecurity-3c609c23ecf6\n\n14)Phishmonger \u2013 Phishing Framework for Pentesters\nhttps://crackcodes.in/2022/01/phishmonger-phishing-framework-for-pentesters/\n\n15)Vulnerability Summary for the Week of January 10, 2022\nhttps://www.cisa.gov/uscert/ncas/bulletins/sb22-017\n\n- Random People", "creation_timestamp": "2022-01-19T02:28:51.000000Z"}