IDOR
Intial Access after getting access to site page noticed are my account details but in the url there id of my of 1009 which sticks out to that are possibly more accounts on this site. Knowing this is tied to our this valu
Web application security writeups: injection, access control, XSS, and file upload issues.
Web application security writeups — injection, access control, XSS, and insecure uploads.
Intial Access after getting access to site page noticed are my account details but in the url there id of my of 1009 which sticks out to that are possibly more accounts on this site. Knowing this is tied to our this valu
Initial Access Getting access to the app lets navigate to any area in the top menu to see products.L injection UNION attack, retrieving multiple values in a single column Area of interest the highlighted part of the url
Insure File Upload Insecure file upload is a vulnerability where an application allows the upload of files without proper validation and control. Now there is so many websites and apps use a file upload feature is a stan
XXS Stored Cross site is dangerous especially stored because its stored into the site and database and can’t be easily terminated from infecting the server hosting the site/sites. After researching how i can exploit this