Recently Updated
WebApp And Api Pentesting 62
- Stored XSS 2022-01-01
- Reflected XSS 2022-01-01
- DOM-based XSS 2022-01-01
- XPATH Injection 2022-01-01
- Unrestricted File Upload -> Bypass 2022-01-01
- Unrestricted File Upload 2022-01-01
- Server-side request forgery (SSRF) 2022-01-01
- Blind Sql Injection -> Time Based 2022-01-01
- Sql Injection With Sqlmap 2022-01-01
- Sql Injection -> Authentication Bypass 2022-01-01
- In-band Sql Injection 2022-01-01
- Blind Sql Injection -> Boolean Based 2022-01-01
- SMTP header injection 2022-01-01
- Stored Html Injection 2022-01-01
- Remote File Inclusion 2022-01-01
- Nosql Injection 2022-01-01
- Multi-Factor Authentication Bypass 2022-01-01
- Mass Assignment -> Horizontal Privilege Escalation 2022-01-01
- Mass Assignment -> Vertical Privilege Escalation 2022-01-01
- JWT Authentication Bypass -> Weak Signing Key 2022-01-01
- JWT Authentication Bypass -> Unverified Signature 2022-01-01
- JWT Authentication Bypass -> jku header injection 2022-01-01
- JWT Authentication Bypass -> Algorithm Confusion 2022-01-01
- JWT Authentication Bypass -> None Algorithm 2022-01-01
- Insecure Deserialization 2022-01-01
- Html Injection 2022-01-01
- Host Header Injection -> Password Reset Poisoning 2022-01-01
- Host Header Injection -> Authentication Bypass 2022-01-01
- Directory Bruteforce 2022-01-01
- Cross-Side Request Forgery 2022-01-01
- Cross-Origin Resource Sharing 2022-01-01
- Code Injection 2022-01-01
- Clickjacking 2022-01-01
- Captcha Bypass -> Missing Parameter 2022-01-01
- Captcha Bypass -> Leaked In HTML 2022-01-01
- Captcha Bypass -> Not Expiring After Used 2022-01-01
- Captcha Bypass -> Leaked In Cookie 2022-01-01
- Captcha Bypass -> OCR 2022-01-01
- Broken Authentication -> Weak Password 2022-01-01
- Session hijacking -> Session Id In Url 2022-01-01
- Broken Authentication -> Username Enumeration 2022-01-01
- Session hijacking -> Session Fixation 2022-01-01
- Broken Authentication -> Account Takeover Via Multistage Login 2022-01-01
- Session hijacking -> Insufficient Session Expiration 2022-01-01
- Broken Authentication -> Unencrypted Communication 2022-01-01
- Broken Authentication -> Forgot Password - Bad Questions 2022-01-01
- Session hijacking -> Predictable session token 2022-01-01
- Broken Authentication -> Bruteforce 2022-01-01
- Broken Access Control -> IDOR -> Order 2022-01-01
- Broken Access Control -> IDOR -> Access File 2022-01-01
- Broken Access Control -> IDOR -> View Profile 2022-01-01
- Broken Access Control -> MFLAC 2022-01-01
- XXE - XML External Entity 2022-01-01
- Open Redirection 2022-01-01
- Server-Side Template Injection 2022-01-01
- Local File Inclusion 2022-01-01
- LDAP Injection 2022-01-01
- Path traversal 2022-01-01
- CRLF Injection 2022-01-01
- Blind Command Injection 2022-01-01
- Command Injection 2022-01-01
- Blind XML External Entity 2022-01-01