HAHWUL

XSS

AUGUST 12, 2021

Cross-Site Scripting

Web Cache Poisoning

OCTOBER 26, 2021

Type Juggling

MAY 01, 2022

Loose Comparison Bug

CSWSH Attack

AUGUST 23, 2021

Cross-Site WebSocket Hijacking

Command Injection

SEPTEMBER 10, 2021

Email Injection

MAY 22, 2022

SMTP Injection & Mail Injection

LaTex Injection

APRIL 09, 2022

IDOR Attack

APRIL 30, 2022

Insecure Direct Object Reference

Cookie Bomb Attack

OCTOBER 16, 2021

CSRF

AUGUST 12, 2021

Cross-Site Request Forgery

HPP Attack

Insecure File Upload

JULY 03, 2022

Web Cache Deception

NOVEMBER 21, 2021

OGNL Injection

JUNE 19, 2022

Object-Graph Navigation Language Injection

Client-Side Desync Attack

DECEMBER 23, 2022

CSD Attack

CSS Injection

JUNE 04, 2022

Relative Path Overwrite

FEBRUARY 27, 2022

RPO Attack

XXE

JANUARY 27, 2022

XML External Entity

Subdomain Takeover

SEPTEMBER 21, 2022

Websocket Connection Smuggling

AUGUST 12, 2021

WCS Attack

Server-Side Javascript Injection

FEBRUARY 27, 2022

SSJI Attack

SSRF

AUGUST 12, 2021

Server-Side Request Forgery

CRLF Injection

SEPTEMBER 07, 2021

HTTP Request Smuggling

JANUARY 12, 2021

HRS Attack

LDAP Injection

OCTOBER 24, 2021

SAML Injection

MAY 01, 2022

Regex Injection

MARCH 30, 2022

SQL Injection

OCTOBER 16, 2021

Click Jacking

OCTOBER 26, 2021

Reverse Tabnabbing

AUGUST 12, 2021

CSV Injection

SEPTEMBER 07, 2021

DOM Clobbering

OCTOBER 08, 2021

SNI Injection

MARCH 09, 2023

Log Injection

APRIL 07, 2022

NoSQL Injection

JUNE 17, 2022

RFD Attack

NOVEMBER 01, 2021

Remote File Download

Insecure Deserialization

FEBRUARY 20, 2022

GraphQL Injection

AUGUST 09, 2022

XSHM Attack

APRIL 09, 2022

Cross Site History Manipulation

XST

OCTOBER 08, 2021

Cross-Site Tracing

EL Injection

JUNE 19, 2022

Expression Language Injection

Dependency Confusion

NOVEMBER 22, 2021

Brute Force

APRIL 10, 2022

CSTI Attack

NOVEMBER 22, 2021

Client-Side Template Injection

Open Redirect

SEPTEMBER 10, 2021

SSTI Attack

NOVEMBER 22, 2021

Server-Side Template Injection

ESI Injection

DECEMBER 19, 2021

Edge Side Include Injection

File Inclusion

JUNE 25, 2022

LFI & RFI

XS-Leaks

MAY 07, 2022

Prototype Pollution

APRIL 18, 2022

JSONP Hijacking

SEPTEMBER 05, 2021

ORM Injection

SEPTEMBER 07, 2022

H2C Smuggling

AUGUST 12, 2021

ReDOS Attack

MARCH 30, 2022

Regex DOS

Path Traversal (Directory traversal)

More Articles

XSS

Web Cache Poisoning

Type Juggling

CSWSH Attack

Command Injection

Email Injection

LaTex Injection

IDOR Attack

Cookie Bomb Attack

CSRF

Zip Slip

Zip Bomb

JSON Hijacking

Github-Action Injection

HTTP Parameter Pollution

Insecure File Upload

Web Cache Deception

OGNL Injection

Client-Side Desync Attack

CSS Injection

Relative Path Overwrite

XXE

Subdomain Takeover

Websocket Connection Smuggling

Server-Side Javascript Injection

SSRF

CRLF Injection

HTTP Request Smuggling

LDAP Injection

SAML Injection

Regex Injection

SQL Injection

Click Jacking

Reverse Tabnabbing

CSV Injection

DOM Clobbering

SNI Injection

Log Injection

NoSQL Injection

RFD Attack

Insecure Deserialization

GraphQL Injection

XSHM Attack

XST

EL Injection

Dependency Confusion

Brute Force

CSTI Attack

Open Redirect

SSTI Attack

ESI Injection

File Inclusion

XS-Leaks

Prototype Pollution

JSONP Hijacking

ORM Injection

H2C Smuggling

ReDOS Attack