Cancel

Race Condition

Race Condition Race conditions may occur when a process is critically or unexpectedly dependent on the sequence or timings of other events. In a web application environment, where multiple requ...

Jan 26, 2020 2020-01-26T00:00:00+07:00 1 min reads

XSLT Injection

XSLT Injection Processing an unvalidated XSL stylesheet can allow an attacker to change the structure and contents of the resultant XML, include arbitrary files from the file system, or execute...

Dec 26, 2019 2019-12-26T00:00:00+07:00 3 min reads

CSRF Injection

Cross-Site Request Forgery Cross-Site Request Forgery (CSRF/XSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they’re currently authenticated....

Dec 17, 2019 2019-12-17T00:00:00+07:00 2 min reads

Subdomains Enumeration

Summary Enumerate all subdomains Subbrute KnockPy GoogleDorks EyeWitness Sublist3r Subfinder Findomain Aquatone (Ruby and Go versions) ...

Sep 27, 2019 2019-09-27T00:00:00+07:00 3 min reads

OAuth

Summary Stealing OAuth Token via referer Grabbing OAuth Token via redirect_uri Executing XSS via redirect_uri OAuth private key disclosure Authorization Code Rule Violation Cross-Site...

May 13, 2019 2019-05-13T00:00:00+07:00 2 min reads

1
...
13
14
15
14 / 15

Race Condition

XSLT Injection

CSRF Injection

Subdomains Enumeration

OAuth

Trending Tags