Oauth Misconfiguration
Understanding the Risk and Preventing the Attacks OAuth is a widely used protocol for authorization and authentication in web applications. OAuth allows a user to grant access to their resources,…
Continue readingWhat is Command Injection?
Introduction A command injection vulnerability is also known as a “Remote Code Execution” (RCE) because an attacker can trick the application into executing a series of payloads that they provide,…
Continue readingWhat is Content Discovery?
What is content? Content can be many things, a file, video, picture, backup, a website feature. When we talk about content discovery, we’re not talking about the obvious things we…
Continue readingNO RATE LIMIT ON FORGOT PASSWORD PAGES
If you are someone, who is looking for Cyber-Security Labs Then you had arrived at the right place. We have amazing Account Takeover Labs in which you can gain great knowledge and…
Continue readingWhat is Cross-Site Scripting?
Cross-Site Scripting, better known as XSS in the cybersecurity community, is classified as an injection attack where malicious JavaScript gets injected into a web application with the intention of being…
Continue readingSERVER-SIDE TEMPLATE INJECTION
Hello everyone, Wishing you and your family a Happy New Year and make your dreams come true and be happy. Yeah, coming back to the article, today we are gonna learn…
Continue readingWhat is Local File Inclusion (LFI)
File Inclusion The File Inclusion vulnerability allows an attacker to include a file, usually exploiting a “dynamic file inclusion” mechanisms implemented in the target application. The Path Traversal vulnerability allows…
Continue readingALL ABOUT IDOR
Hello everyone, in this article we are gonna learn about IDOR. What is IDOR, how IDOR vulnerability is found, and what are the mitigation’s should we take to overcome this…
Continue readingDETAILED EXPLANATION ABOUT SSRF
Hello everyone, today we are going to learn about SSRF. What is SSRF and what SSRF can do to any web application and how dangerous it can be. Before going…
Continue readingiframe Injection – Attacks and Mitigation
What is IFrame? iFrame is the component of an HTML element that allows you to embed documents, videos, and interactive media within a page. In mostly cases the iFrame functionality…
Continue reading