Hacking stackoverflow.com
Published: 2014-02-19
From 2009-2013, I reported 33 security vulnerabilities to stackoverflow.com.
They've all been addressed, and now that a significant amount of time has passed, some of the folks from Stack Exchange suggested I write about them.
(This series is still being written!)
About the author:
I'm Daniel LeCheminant, a developer at Trello Inc.
You can follow me on Twitter or e-mail me.
Most recent post:
- A bug in the Sundown and Redcarpet markdown parsers may lead to XSS
- XSS via a spoofed React element
- HackerOne's First XSS
- Hacking stackoverflow.com's HTML sanitizer
The most popular things I've written: