ZephrSec - Adventures In Information Security
  • About Andy Gill/ZephrFish
  • Podcast
  • My Books
  • LTR101 Posts
  • ZtH Posts
  • Photo Blog
Sign in Subscribe

csv injection

A collection of 3 posts
Delivering Many a Payload via CSRF
CSRF

Delivering Many a Payload via CSRF

CSRF Is still an issue in 2018, with some interesting payload delivery methods. Chaining vulns and some more on CSV Injection too!
Feb 11, 2018 8 min read
CSV Injection -> Meterpreter on Pornhub
bugbounty

CSV Injection -> Meterpreter on Pornhub

This post will discuss an issue I found regarding CSV injection on Pornhub.com, allowing a remote attacker to inject malicious code into video titles resulting in potential full compromise of content creators and other users. Note: Pornhub have advised that they will no longer be rewarding for this type
Jul 29, 2016 2 min read
CSV Injection Revisited - Making Things More Dangerous(and fun)
bugbounty

CSV Injection Revisited - Making Things More Dangerous(and fun)

In this post, I will discuss several methods and remediation steps that can be used to help escape and mitigate CSV [https://support.office.com/en-gb/article/Import-or-export-text-txt-or-csv-files-5250ac4c-663c-47ce-937b-339e391393ba] (Comma separated values) injection type attacks. For those of you who may not know what CSV injection is or how it occurs,
Jul 22, 2016 4 min read
Page 1 of 1
ZephrSec - Adventures In Information Security © 2023
  • Donate
  • Github
  • Twitter
  • LinkedIn
  • Photo Blog
Powered by Ghost