SSRF with whitelist-based input filter – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SSRF with whitelist-based input filter.
SSRF Practitioner
Artículos por categoría
Portswigger
SSRF with filter bypass via open redirection vulnerability – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SSRF with filter bypass via open redirection vulnerability.
SSRF PractitionerSSRF with blacklist-based input filter – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SSRF with blacklist-based input filter.
SSRF PractitionerBlind SSRF with out-of-band detection – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind SSRF with out-of-band detection.
SSRF PractitionerBasic SSRF against the local server – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Basic SSRF against the local server.
SSRF ApprenticeBasic SSRF against the local server – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Basic SSRF against the local server.
SSRF ApprenticeFile path traversal, validation of start of path – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “File path traversal, validation of start of path.
Directory traversal ApprenticeFile path traversal, validation of file extension with null byte bypass – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “File path traversal, validation of file extension with null byte bypass.
Directory traversal ApprenticeFile path traversal, simple case – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “File path traversal, simple case.
Directory traversal ApprenticeFile path traversal, traversal sequences stripped with superfluous URL-decode – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “File path traversal, traversal sequences stripped with superfluous URL-decode.
Directory traversal PractitionerFile path traversal, traversal sequences stripped non-recursively – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “File path traversal, traversal sequences stripped non-recursively.
Directory traversal PractitionerFile path traversal, sequences blocked with absolute path bypass – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “File path traversal, sequences blocked with absolute path bypass.
Directory traversal PractitionerExploiting blind XXE to retrieve data via error messages – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Exploiting blind XXE to retrieve data via error messages.
XML injection PractitionerExploiting blind XXE to exfiltrate data using a malicious external DTD – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Exploiting blind XXE to exfiltrate data using a malicious external DTD.
XML injection PractitionerExploiting XXE via image file upload – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Exploiting XXE via image file upload.
XML injection PractitionerExploiting XInclude to retrieve files – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Exploiting XInclude to retrieve files.
XML injection PractitionerBlind XXE with out-of-band interaction – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind XXE with out-of-band interaction.
XML injection PractitionerBlind XXE with out-of-band interaction via XML parameter entities – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind XXE with out-of-band interaction via XML parameter entities.
XML injection PractitionerExploiting XXE using external entities to retrieve files – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Exploiting XXE using external entities to retrieve files.
XML injection ApprenticeExploiting XXE to perform SSRF attacks – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Exploiting XXE to perform SSRF attacks.
XML injection ApprenticeSQL Injection UNION attack, retrieving data from other tables – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SQL Injection UNION attack, retrieving data from other tables.
SQL Injection ApprenticeSQL injection UNION attack, finding a column containing text – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SQL injection UNION attack, finding a column containing text.
SQL Injection PractitionerSQL injection UNION attack, determining the number of columns returned by the query – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SQL injection UNION attack, determining the number of columns returned by the query.
SQL Injection PractitionerUser role can be modified in user profile – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “User role can be modified in user profile.
Burpsuite JavaScript Access control vulnerabilities ApprenticeUser ID controlled by request parameter – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “User ID controlled by request parameter.
Burpsuite JavaScript Access control vulnerabilities ApprenticeUser ID controlled by request parameter, with unpredictable user IDs – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “User ID controlled by request parameter, with unpredictable user IDs.
Burpsuite JavaScript Access control vulnerabilities ApprenticeUser ID controlled by request parameter with data leakage in redirect – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “User ID controlled by request parameter with data leakage in redirect.
Burpsuite JavaScript Access control vulnerabilities ApprenticeUser role controlled by request parameter – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “User role controlled by request parameter.
Burpsuite JavaScript Access control vulnerabilities ApprenticeUnprotected admin functionality – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Unprotected admin functionality.
Burpsuite JavaScript Access control vulnerabilities ApprenticeUnprotected admin functionality with unpredictable URL – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Unprotected admin functionality with unpredictable URL.
Burpsuite JavaScript Access control vulnerabilities ApprenticeOS command injection, simple case – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “OS command injection, simple case.
Burpsuite JavaScript OS Command Injection ApprenticeBlind OS command injection with time delays – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind OS command injection with time delays.
Burpsuite JavaScript OS Command Injection PractitionerBlind OS command injection with out-of-band interaction – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind OS command injection with out-of-band interaction.
Burpsuite JavaScript OS Command Injection PractitionerBlind OS command injection with output redirection – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind OS command injection with output redirection.
Burpsuite JavaScript OS Command Injection PractitionerReflected XSS into a JavaScript string with single quote and backslash escaped – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Reflected XSS into a JavaScript string with single quote and backslash escaped.
Burpsuite JavaScript XSS PractitionerCSRF vulnerability with no defenses – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “CSRF vulnerability with no defenses.
Burpsuite JavaScript CSRF ApprenticeReflected XSS into attribute with angle brackets HTML-encoded – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Reflected XSS into attribute with angle brackets HTML-encoded.
Burpsuite JavaScript XSS ApprenticeManipulating WebSocket messages to exploit vulnerabilities – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Manipulating WebSocket messages to exploit vulnerabilities.
Burpsuite JavaScript WebSocket ApprenticeDOM XSS in document.write sink using source location.search inside a select element – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “DOM XSS in document.write sink using source location.search inside a select element.
Burpsuite JavaScript XSS PractitionerDOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded.
Burpsuite JavaScript XSS PractitionerStored DOM XSS – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Stored DOM XSS.
Burpsuite JavaScript XSS PractitionerReflected DOM XSS – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Reflected DOM XSS.
Burpsuite JavaScript XSS PractitionerStored XSS into anchor href attribute with double quotes HTML-encoded – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Stored XSS into anchor href attribute with double quotes HTML-encoded.
Burpsuite JavaScript XSS ApprenticeSQL Injection vulnerability in WHERE clause allowing retrieval of hidden data – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SQL Injection vulnerability in WHERE clause allowing retrieval of hidden data.
SQL Injection ApprenticeSQL injection vulnerability allowing login bypass – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “SQL injection vulnerability allowing login bypass.
SQL Injection ApprenticeReflected XSS into a JavaScript string with angle brackets HTML encoded – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Reflected XSS into a JavaScript string with angle brackets HTML encoded.
Burpsuite JavaScript XSS Apprentice2FA simple bypass – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “ Username enumeration via different responses.
Burpsuite Login Fuerza bruta Bypass Authentication ApprenticePassword reset broken logic – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Password reset broken logic.
Burpsuite Login Fuerza bruta Enumeración Authentication ApprenticeUsername enumeration via different responses – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “ Username enumeration via different responses.
Burpsuite Login Fuerza bruta Enumeración Authentication ApprenticeUsername enumeration via subtly different responses – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “ Username enumeration via subtly different responses.
Burpsuite Login Fuerza bruta Enumeración Authentication PractitionerStored XSS into HTML context with nothing encoded – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Stored XSS into HTML context with nothing encoded.
Burpsuite JavaScript XSS ApprenticeReflected XSS into HTML context with nothing encoded – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Reflected XSS into HTML context with nothing encoded.
Burpsuite JavaScript XSS ApprenticeDOM XSS in innerHTML sink using source location.search – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio: “DOM XSS in innerHTML sink using source location.search”:
Burpsuite JavaScript XSS ApprenticeDOM XSS in jQuery selector sink using a hashchange event – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio: “DOM XSS in jQuery selector sink using a hashchange event”:
Burpsuite JavaScript XSS ApprenticeDOM XSS in jQuery anchor href attribute sink using location.search source – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio: “DOM XSS in jQuery anchor href attribute sink using location.search source”:
Burpsuite JavaScript XSS ApprenticeDOM XSS in document.write sink using source location.search – PortSwigger Write Up
En este post vamos a estar resolviendo el laboratorio: “DOM XSS in document.write sink using source location.search”:
Burpsuite JavaScript XSS Apprentice