Collaborate Disseminate
In my frontend I have something like this:
article = httpLibrary.get(‘api.mysite.com/articles/’ + articleId);
Where articleId is taken from a URL query parameter (it’s injectable).
Is this exploitable in any way?
I was … Continue reading Security implications of injection in api http request from frontend?
This is the code handling the high security level part
function xss_check_3($data, $encoding = “UTF-8”)
{
// htmlspecialchars – converts special characters to HTML entities
// ‘&’ (ampersand) becomes ‘&a… Continue reading HTML Injection in bWAPP High security Level
Assuming you are authorized to pentest a live website that’s login page is vulnerable to SQL Injection.
Lets say your backpack has only 2 crafted queries by you which is admin’ — and ‘=’ ‘OR’.
Your past experience on a tes… Continue reading SQLI Login Bypass Cheat-sheets Question
For a project we were asked to find and exploit the “Remote Code Injection” vulnerability of a web application. After hours of search (we have the source code of the web application as it is running on localhost), we came to … Continue reading Exploit include_once in PHP Code
I was testing SQLI Cheatsheets on a vulnerable test site.
This particular injection ‘=’ ‘OR’ seems to work on the login page.
Why does that injection work? What’s the back-end SQL code, if I could imagine myself?
I used Bur… Continue reading ‘=’ ‘OR’ SQL Injection Login Bypass Question
I bought a mouse on aliexpress. It was reasonably cheap. It works well enough to be on par with a mouse I can buy here for 4 times the price. I know, this is a well known business model, and those mice are exactly the same.
Yesterday I got a report asking us to check some wordpress website because the person’s antivirus blocked said web.
I ran the Sucuri Site Check and it indeed detects malware:
“Known javascript malware: malware.injection?39”
<!–codes… Continue reading Sucuri detects malware on wordpress but I can’t find the malicious code
I was testing out a stored XSS on a test site I made which is vulnerable so the problem is when I tried executing the usual “><script>alert(‘XSS’)</script>
It did not work instead. But this particular “><… Continue reading Presistent XSS Filter Bypass Question
If a web site or web application is running with https, is it possible to conduct http header attacks like http header injections and so on?
Recently I came across a SQL Injection Cheat Sheet which contains this particular cheat sheet which I am confused by ‘ or 1=1/*
Assuming I am testing it on this server-side code below.
SELECT * FROM users WHERE login=’$logi… Continue reading ‘ OR 1=1/* SQL Injection Login Bypass Question