-
kuzel bir calisma.
yetkilendirme ve mysqlConnector.php'de sqli problemleri mevcut, bide sqli'ler exploit edilirse blind veya union ile sms/imei/contacts/geo... bir cok bilgiye erisilebilcegi olasi. h…
-
Start Count Columns...
Columns Total: 1Traceback (most recent call last):
File "sqli.py", line 220, in
s.setColumns()
File "sqli.py", line 68, in setColumns
res = self.getContent(url…
-
After setting up the docker containers on Ubuntu 22.04 with the commands:
git clone https://github.com/cytopia/docker-dvwa
make start
This produces the following output:
Starting DVWA
docke…
-
**Stored_XSS** issue exists @ **src/main/webapp/vulnerability/sqli/download_id.jsp** in branch **refs/heads/master**
*The application's outStream.write embeds untrusted data in the generated output…
-
**Stored_XSS** issue exists @ **src/main/webapp/vulnerability/sqli/download_id.jsp** in branch **refs/heads/master**
*The application's outStream.write embeds untrusted data in the generated output…
-
**Reliance_on_Cookies_in_a_Decision** issue exists @ **vulnerabilities/sqli_blind/source/high.php** in branch **master**
*The cookie _COOKIE obtained by <?php at vulnerabilities\sqli_blind\sourc…
-
Any thought on why two cyrillic symbols "ор" could trigger this rule?
It happens in different conditions near other symbols, but could not happen at all with other symbols.
And what would be the b…
-
### Background
Brakeman version: 5.1.2
Rails version: 6.1.4.1
Ruby version: 2.5.5
### Rails application code
Cannot disclose the full code but I can disclose the offending part which seems …
-
sqlmap got a 302 redirect to 'http://192.168.1.64:80/login.php'. Do you want to follow? [Y/n] Y
redirect is a result of a POST request. Do you want to resend original POST data to a new location? [Y/…
ghost updated
6 years ago
-
ZAP sends a normal HTTP request to a web application and gauges the response time: 325ms
ZAP sends a modified HTTP request to the same web application and gets a different response time: 14ms (This…