search

Web

SQL injection (SQLi)chevron-rightCross site scripting (XSS)chevron-rightFile inclusions (LFI, RFI)chevron-rightDirectory traversalchevron-rightCross site request forgery (CSRF)chevron-rightXML external entity (XXE)chevron-rightCross origin resource sharing (CORS)chevron-rightServer-side request forgery (SSRF)chevron-rightServer-side template injection (SSTI)chevron-rightAccess control vulnerabilitieschevron-rightAuthentication vulnerabilitieschevron-rightJWT attackschevron-rightFile uploadschevron-rightHost header attackschevron-rightClickjackingchevron-rightLogic flawschevron-rightOS command injectionchevron-rightHTTP Request smugglingchevron-rightInsecure deserializationchevron-rightDOM-basedchevron-rightWebSocketschevron-rightWeb cache poisoningchevron-right
PreviousPasswords & credentialsNextSQL injection (SQLi)