I was quite surprised to come across this funny CVE, as it was the most bizarre one I had seen so far. This particular CVE was related to Raspberry Pi and the author used defaul
Read More
What it is, how to do it, and how to prevent it Photo by Markus Winkler on Unsplash We regularly copy and paste stuff. Sometimes, the copied characters contain importa
Read More
Portswigger — Basic server-side template injection Solution What is SSTI? Server-side template injection is a vulnerability where the attacker injects malicious inpu
Read More
Portswigger HTTP Request Smuggling Solution | Karthikeyan NagarajWhat is HTTP Smuggling?HTTP request smuggling is a technique for interfering with the way a website processes se
Read More
Portswigger Lab Solution — Cross-site WebSocket hijacking Cross-site WebSocket hijacking (also known as cross-origin WebSocket hijacking) involves a cross-site reques
Read More
In this tutorial, I’m going to show you how to exploit the file inclusion vulnerability in DVWA! But before doing that, for those of you who have not yet read my previous arti
Read More
