Categoría: writeups

Routing-based SSRF

Host header authentication bypass

Basic password reset poisoning

Exploiting path mapping for web cache deception

Exploiting cache server normalization for web cache deception

Exploiting origin server normalization for web cache deception

Exploiting path delimiters for web cache deception

Server-side template injection with information disclosure via user-supplied objects

Server-side template injection in an unknown language with a documented exploit

Server-side template injection using documentation