Etiqueta: Practitioner

Remote code execution via polyglot web shell upload

Referer-based access control

Multi-step process with no access control on one step

Method-based access control can be circumvented

URL-based access control can be circumvented

Blind SQL injection with conditional errors

Blind SQL injection with conditional responses

SQL injection UNION attack, retrieving multiple values in a single column

SQL injection UNION attack, retrieving data from other tables

SQL injection UNION attack, finding a column containing text