../../../tags/xss

Home Blog Whoami

Xss

January 22, 2026 • –––views
When Self-XSS Isn’t Self Anymore: Escalating to Account Takeover
bug-bounty Writeup Web ATO XSS
How chaining a self‑XSS with email HTML injection resulted in account takeover.