Top 10 XSS PayloadsThose are the most useful payloads to prove the vast majority of Cross Site Scripting (XSS) vulnerabilities out there.Jul 232Jul 232
A Curious Glitch in XSS SanitizingWhen looking for ways to bypass XSS sanitizing (sanitizing, not filtering), I’ve figured out something interesting but almost useless…Feb 6, 2022Feb 6, 2022
Thinking About Simple SQL InjectionsAbout 3 years ago, in 2018, I wrote about some SQL injection in login forms without a quote to break out from string delimiter, in an old…Sep 15, 2021Sep 15, 2021
On SSRF (Server Side Request Forgery) or Simple Stuff Rodolfo Found — Part II think the most we have to test against an application the better. But as you can see by yourself (correct me if I’m wrong please) the…Jul 20, 20214Jul 20, 20214