Finding a vulnerability in the patch to a vulnerability which I also discovered.

This is how I solved the web/area51 challenge of BuckeyeCTF 2023.

This is the story of how I found a universal cross-site scripting vector in a browser extension used by over 10 million users.