Tag: web security
All the articles with the tag "web security".
-
Local File Inclusion (LFI) & Path Traversal
Local File Inclusion (LFI) and path traversal vulnerabilities for reading sensitive files and remote code execution
-
NoSQL Injection
NoSQL injection is a security vulnerability that occurs when untrusted data is sent to a NoSQL database interpreter as part of a command or query. Unlike SQL...
-
Log Poisoning via User-Agent
Log poisoning is an attack technique where malicious code is injected into server log files which are then executed when the log file is viewed or processed....
-
SSI (Server-Side Includes) Injection
Server-Side Includes (SSI) are directives in HTML pages that are evaluated on the server before the page is delivered to the client. SSI injection occurs whe...