DOM-Based Cross-Site Scripting (XSS) with CodeQL and/or DOM Invader
According to PortSwigger, “DOM-based XSS vulnerabilities usually arise when JavaScript takes data from an attacker-controllable source, such as the URL, and ...
Recent posts
BlueWings - HackingHub
I recently completed the BlueWings hub on hackinghub and decided to post a writeup about it as I used these misconfigurations multiple times on multiple bug ...
CVE-2021-45435
Simple Cold Storage Management System’s admin panel is vulnerable to unauthenticated SQL injection via the ‘username’ field. This allows for both authenticat...