Collaborate Disseminate
Recently, one of my services received a query where the JSON payload contained the string <an-arabic-character>\u0000bՕR. The service handled it gracefully so no real harm was done, but am I right to be suspicious of this activity ?
… Continue reading Is a user query containing the string "\u0600\u0000bՕR" suspicious/malicious?
I was doing the following PortSwigger Lab on cross site scripting (XSS).
The following payload works perfectly.
http://foo?'-alert(1)-'
Which is input into the following section of the webpage.
<img src="/resourc… Continue reading How does this PortSwigger lab’s XSS work?
I was watching the DEFCON 17: Advanced SQL Injection video here.
At 15:00, when discussing the various classes and types of SQL injection attackS, the speaker stated
With MySQL you really only have Union-based and Blind
Provided the abov… Continue reading Why are MySQL injections more limited than MS-SQL attacks?
I am trying to complete an SQL injection CTF here.
I confirmed just adding a single ‘ mark at the end of the URL caused a MySQL syntax error, and following this tutorial, I could complete this challenge without any automated tools.
Here is… Continue reading sqlmap is encountering 403 forbidden
I have a WordPress plugin that helps create an organization chart/tree and then generates a URL where the chart is available to be viewed by the public.
The plugin dashboard looks like this
the plugin uses window alerts to input from the u… Continue reading What are vulnerabilities of saving user input directly in wordpress plugin?
I have a wordpress plugin that helps create an organization chart/tree and then generates a URL where the chart is available to be viewed by the public?
Inside the plugin’s view in WordPress dashboard. After we create a chart, we click gen… Continue reading What are the vulnerabilities of exposing url end point param?
I’m working with the API for a popular CI/CD app and I found a bug where path variables are being written directly to the DOM without being checked first. The tldr is that to access a project you go to a URL like
appHost.com/projects/proje… Continue reading How can I inject JavaScript into a url whose contents will be written to the DOM in a way that it could execute? [closed]
I wonder, is possible XXE attack in this case?
The data of request is starting with:
<InteractionMessage><Header><SenderApplication>VIP3.0</SenderApplication><ReceiverApplication/><TransactionID>16513976… Continue reading Is possible XXE with XSI modify?
I am looking for a plugin like the ScreenShotter , which is capable of capturing a screen shot of other local network connected devices opened browsers pages using html5 canvas
A demo of ScreenShotter working
I am also unable to verify tha… Continue reading Is There an MITMf ScreenShotter plugin for modern tools like bettercap?
Is it possible to inject code into RAM using physical access? For example desolder the RAM chips, solder something between the original RAM chip and the phone motherboard, and use that to directly access RAM chip content and inject code in… Continue reading Is it possible to inject code using physical memory access to jailbreak phones?