Kategoriler
Vulnerability

Part (2) WRITE UP – [Google VRP ] GOOGLE BUG BOUNTY: AngularJS XSS Console Cloud Google Transfer on-premises jobs

Hi Two days before the end of 2020 I will tell you about the XSS problem of transfer internal work in google cloud. Steps to reproduce Google cloud account logged in Transfer on-premises jobs were visited during research https://console.cloud.google.com/transfer/on-premises/jobs?project= (id) I created a transfer job on that page pOC video XSS load has been entered […]

Kategoriler
Vulnerability

Part (1) WRITE UP – [Google VRP ] GOOGLE BUG BOUNTY: AngularJS XSS Console Cloud Google Monitoring

Hi Two days before the end of 2020 I will brief you the XSS problem in google cloud monitoring section. Steps to reproduce logged into google monitor as shown I created a new group by clicking on groups I wrote XSS payloads in the places shown in the picture I created the group (; I […]