LinkedIn logo

How LinkedIn Uses XSS

4 engineering articles about XSS from LinkedIn's engineering team

Articles

Filter:
LinkedIn logo
LinkedIn
Intermediate
The article discusses Same Origin Method Execution (SOME) vulnerabilities, detailing how attackers can exploit these vulnerabilities to execute JavaScript functions on behalf of users.
Nathan Walsh
6 min read
Has Summary
--
LinkedIn logo
LinkedIn
Intermediate
The article discusses a unique UI redressing attack that exploits CSS selectors to trick users into navigating to malicious sites.
LinkedIn Engineering Team
4 min read
Has Summary
--
LinkedIn logo
LinkedIn
Intermediate
The article discusses a security vulnerability identified in Netty's cookie parsing code, which can lead to a universal HttpOnly bypass in the Play Framework and potentially other frameworks.
Luca Carettoni
4 min read
Includes Code
Has Summary
--
LinkedIn logo
LinkedIn
Intermediate
The article discusses LinkedIn's transition from server-side templates like JSPs to client-side templates using dust.
LinkedIn Engineering Team
6 min read
Has Summary
--

You've reached the end! All 4 articles loaded.