Coursera Plus Annual is 40% Off — Ends July 6.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

XSS Exploitation in PDF.js Using CVE-2024-4367 - Akasec CTF Challenge

CryptoCat via YouTube

Start learning Write review
OpenLearning Ad

Master AI and Machine Learning: From Neural Networks to Applications

Learn More → University of the People Ad

Earn Your CS Degree, Tuition-Free, 100% Online!

Learn More →

Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off
One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.
Unlock All Certificates
Learn how to exploit server-side XSS in PDF.js through a detailed walkthrough video of the "Upload" web challenge from Akasec CTF 2024. Follow along with a comprehensive demonstration of source code analysis, exploitation of the recent CVE-2024-4367 vulnerability in PDF.js, and Server-Side Request Forgery (SSRF) techniques. Gain practical experience in web security testing and CTF challenge solving through this beginner-friendly tutorial that breaks down complex concepts into manageable steps. Access additional resources, write-ups, and social media links to further enhance your understanding of web security concepts and CTF methodologies.

Syllabus

Start
Source code review
XSS CVE-2024-4367
SSRF
End

Taught by

CryptoCat

Reviews

Start your review of XSS Exploitation in PDF.js Using CVE-2024-4367 - Akasec CTF Challenge

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.