How I turned Self XSS to Stored via CSRF

SQL Injection & Remote Code Execution - Double P1

Hyperlink Injection - Easy Money (sometimes)