This page documents recurring attack classes that DOMPurify and other DOM-based HTML sanitizers have had to withstand: HTML parser mutation, namespace confusion, rawtext breakouts, depth-limit ...
If you found this repository helpful in discovering new opportunities, don’t keep it to yourself — share it with your friends or batchmates so they can benefit too! You can also connect with me on ...