HAHWUL

CSD Attack

Insecure File Upload

JULY 03, 2022

CSRF

AUGUST 12, 2021

Cross-Site Request Forgery

File Inclusion

JUNE 25, 2022

LFI & RFI

ORM Injection

SEPTEMBER 07, 2022

Server-Side Javascript Injection

FEBRUARY 27, 2022

SSJI Attack

CSTI Attack

NOVEMBER 22, 2021

Client-Side Template Injection

HTTP Parameter Pollution

SEPTEMBER 20, 2021

HPP Attack

Zip Bomb

FEBRUARY 04, 2023

CSS Injection

JUNE 04, 2022

XS-Leaks

MAY 07, 2022

Subdomain Takeover

SEPTEMBER 21, 2022

Log Injection

APRIL 07, 2022

Click Jacking

OCTOBER 26, 2021

HTTP Request Smuggling

JANUARY 12, 2021

HRS Attack

DOM Clobbering

OCTOBER 08, 2021

SAML Injection

MAY 01, 2022

XSS

AUGUST 12, 2021

Cross-Site Scripting

ReDOS Attack

MARCH 30, 2022

Regex DOS

Cookie Bomb Attack

OCTOBER 16, 2021

Websocket Connection Smuggling

AUGUST 12, 2021

WCS Attack

SQL Injection

OCTOBER 16, 2021

Web Cache Poisoning

OCTOBER 26, 2021

NoSQL Injection

JUNE 17, 2022

JSONP Hijacking

SEPTEMBER 05, 2021

Brute Force

APRIL 10, 2022

H2C Smuggling

AUGUST 12, 2021

Insecure Deserialization

FEBRUARY 20, 2022

Regex Injection

MARCH 30, 2022

GraphQL Injection

AUGUST 09, 2022

Prototype Pollution

APRIL 18, 2022

Email Injection

MAY 22, 2022

SMTP Injection & Mail Injection

Relative Path Overwrite

FEBRUARY 27, 2022

RPO Attack

XXE

JANUARY 27, 2022

XML External Entity

CSWSH Attack

AUGUST 23, 2021

Cross-Site WebSocket Hijacking

ESI Injection

DECEMBER 19, 2021

Edge Side Include Injection

SSRF

AUGUST 12, 2021

Server-Side Request Forgery

CRLF Injection

SEPTEMBER 07, 2021

Type Juggling

MAY 01, 2022

Loose Comparison Bug

CSV Injection

SEPTEMBER 07, 2021

Open Redirect

SEPTEMBER 10, 2021

RFD Attack

NOVEMBER 01, 2021

Remote File Download

Path Traversal (Directory traversal)

SEPTEMBER 09, 2021

Zip Slip

SEPTEMBER 20, 2021

IDOR Attack

APRIL 30, 2022

Insecure Direct Object Reference

Github-Action Injection

MAY 21, 2022

XST

OCTOBER 08, 2021

Cross-Site Tracing

JSON Hijacking

SEPTEMBER 05, 2021

OGNL Injection

JUNE 19, 2022

Object-Graph Navigation Language Injection

Dependency Confusion

NOVEMBER 22, 2021

SNI Injection

MARCH 09, 2023

EL Injection

JUNE 19, 2022

Expression Language Injection

XSHM Attack

APRIL 09, 2022

Cross Site History Manipulation

SSTI Attack

More Articles

Web Cache Deception

LDAP Injection

LaTex Injection

Reverse Tabnabbing

Command Injection

Client-Side Desync Attack

Insecure File Upload

CSRF

File Inclusion

ORM Injection

Server-Side Javascript Injection

CSTI Attack

HTTP Parameter Pollution

Zip Bomb

CSS Injection

XS-Leaks

Subdomain Takeover

Log Injection

Click Jacking

HTTP Request Smuggling

DOM Clobbering

SAML Injection

XSS

ReDOS Attack

Cookie Bomb Attack

Websocket Connection Smuggling

SQL Injection

Web Cache Poisoning

NoSQL Injection

JSONP Hijacking

Brute Force

H2C Smuggling

Insecure Deserialization

Regex Injection

GraphQL Injection

Prototype Pollution

Email Injection

Relative Path Overwrite

XXE

CSWSH Attack

ESI Injection

SSRF

CRLF Injection

Type Juggling

CSV Injection

Open Redirect

RFD Attack

Path Traversal (Directory traversal)

Zip Slip

IDOR Attack

Github-Action Injection

XST

JSON Hijacking

OGNL Injection

Dependency Confusion

SNI Injection

EL Injection

XSHM Attack