# Prototype Pollution

- [Lab: DOM XSS via client side prototype pollution](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-dom-xss-via-client-side-prototype-pollution.md)
- [Lab: DOM XSS via an alternative prototype pollution vector](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-dom-xss-via-an-alternative-prototype-pollution-vector.md)
- [Lab: Client side prototype pollution via flawed sanitization](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-client-side-prototype-pollution-via-flawed-sanitization.md)
- [Lab: Client side prototype pollution in third party libraries](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-client-side-prototype-pollution-in-third-party-libraries.md)
- [Lab: Client side prototype pollution via browser APIs](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-client-side-prototype-pollution-via-browser-apis.md)
- [Lab: Privilege escalation via server side prototype pollution](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-privilege-escalation-via-server-side-prototype-pollution.md)
- [Lab: Detecting server side prototype pollution without polluted property reflection](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-detecting-server-side-prototype-pollution-without-polluted-property-reflection.md)
- [Lab: Bypassing flawed input filters for server side prototype pollution](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-bypassing-flawed-input-filters-for-server-side-prototype-pollution.md)
- [Lab: Remote code execution via server side prototype pollution](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-remote-code-execution-via-server-side-prototype-pollution.md)
- [Lab: Exfiltrating sensitive data via server side prototype pollution](/web-security-academy-solutions/advanced-topics/prototype-pollution/lab-exfiltrating-sensitive-data-via-server-side-prototype-pollution.md)