Ir al contenido
Home
CTFs resueltos
PicoCTF
PicoCTF 2025 writeup
PicoCTF 2024 writeup
PortSwigger Lab Writeups
Menú
Home
CTFs resueltos
PicoCTF
PicoCTF 2025 writeup
PicoCTF 2024 writeup
PortSwigger Lab Writeups
Etiqueta:
Practitioner
Scanning non-standard data structures
Discovering vulnerabilities quickly with targeted scanning
SQL injection with filter bypass via XML encoding
Infinite money logic flaw
HTTP/2 request splitting via CRLF injection
URL normalization
CSRF with broken Referer validation
CSRF where Referer validation depends on header being present
SameSite Lax bypass via cookie refresh
SameSite Strict bypass via sibling domain
Siguiente
→
