Portable Data exFiltration: XSS for PDFs

PDF documents and PDF generators are ubiquitous on the web, and so are injection vulnerabilities. Did you know that controlling a measly HTTP hyperlink can provide a foothold into the inner workings of a PDF? In this session, you will learn how to use a single link to compromise the contents of a PDF…

By: Gareth Heyes

Full Abstract & Presentation Materials:
https://www.blackhat.com/eu-20/briefings/schedule/#portable-data-exfiltration-xss-for-pdfs-21229Black HatRead More