Collaborate Disseminate
I’m testing a site that behaves like this:
When I change my username, I submit a POST request with JSON data like this {“username”:”John”}.
If I change that to for example {“username”:{“test”:”test”}}, my username is print… Continue reading Is JavaScript Object Injection exploitable?
I have a HTTP request which has the first line like this one:
GET / HTTP/1.1
The value HTTP/1.1 gets reflected unfiltered/unencoded back and is vulnerable to XSS, but is there any way to exploit that, except by social engi… Continue reading XSS in HTTP Version value exploitable?
I’m testing a web application and have found a parameter that is vulnerable to NoSQL injection (Elastisearch). The parameter is named username and is the only parameter in the HTTP Request. As a response, I just get a true/fa… Continue reading Elastisearch NoSQL injection implications?
When I capture HTTP requests and responses with Burp suite, everything works fine except when I want to capture facebook.com responses, I get a strange response body which is in some unreadable format that is not HTML, but ju… Continue reading Strange response body in burp suite
I’m just starting out to learn about fuzzing and have made a dumb fuzzer that changes several random bytes in a pdf file to random values, opens it and detects if Acrobat Reader has crashed. What types of bugs can I expect to… Continue reading What kind of bugs can be found by dumb fuzzing a desktop app?
On a local network, an attacker can craft a custom IP packet with a fake source IP address and send it to a host. I know that the attacker will not receive a response, but there are still attacks for which faking/spoofing the… Continue reading IP address spoofing on internet