XSS - Cross Site Scripting
XSS in an input validation weakness which allows an attacker to inject a payload into a response from the application. When the payload can included HTML/ »
XSS in an input validation weakness which allows an attacker to inject a payload into a response from the application. When the payload can included HTML/ »
The XML External Entity (XXE) attack is a type of attack against an application that parses XML input. An XXE attack typically occurs when XML input »
Many web applications allow users to upload content. The content may be images, word documents, audio and video files etc. This upload facility however exposes a »
Server Side Request Forgery (SSRF) is a vulnerability that describes the behaviour of a server making a request that is under the attackers control. When using »
List HTTP methods: curl -i -X OPTIONS http://10.10.10.57 -i flag to include protocol response headers in the output. Grab HTTP Server Banners: »
Command injection is an attack in which the goal is execution of arbitrary commands on the host operating system via a vulnerable application. Command injection attacks »