Tag: injection

Found 164 results for 'injection'.

1) php - PHP filter_input() not protecting from eval()
2) xss - Facebook's warning of self-xss
3) web-application - XSS via JSON: Why does a web application not sanitize either its incoming params hash or its outgoing JSON values of malicious tags like Script?
4) linux - Why do websites still suffer from OS injections if by default web-servers are not assigned a shell?
5) web-application - SQL injection Are there any instances where a vulnerable url would not contain an 'equals' (=) symbol
6) php - Malicious php scripts in word press theme folder?
7) web-browser - DOM Based XSS attacks: what is the most dangerous example?
8) penetration-test - Some doubts about SQL Injection examples, how exactly works?
9) php - PHP object injection in the absense of source code?
10) php - PHP assert code injection
11) php - How to trace script injection/infection in php app
12) php - PHP code injection using GET and echo
13) php - DVWA - Command Injection (high level)
14) web-application - Is jQuery 2.1.1 vulnerable to OS command injection?
15) web-application - Is it possible to inject values in a drop down list?
16) wifi - Why can't all wireless cards perform packet injection?
17) injection - Full protection from shell-script injections (like a "Bash injection") - Is it even possible?
18) appsec - How to inject executable, malicious code into PDF, JPEG, MP3, etc.?
19) injection - Lua loadstring, whitelisting against injection
20) php - Injected Images
21) windows - Detecting or preventing process memory injections on Windows (anti-hack)
22) php - Is PHP's eval() function vulnerable to code injection when executing a string built from an array?
23) ids - Scan interpreted code for long lines to detect code injection?
24) xss - Is inserting url parameters directly into the page safe in angular 2+?
25) malware - injecting malicious code to existing exe file: what really happens?
26) firewalls - Understanding an attempt to exploit a webserver
27) javascript - Injecting javascript into an alert
28) sql-injection - This is a working SQL-injection. What could the server side query string look like?
29) ddos - Common attacks when no ports are open
30) malware - Windows PE file and Malwares
31) php - What SQL injection tool generates queries in my access_log?
32) xss - How would someone execute a Perl script on a webpage?
33) php - Presistent XSS Filter Bypass Question
34) windows - Memory injection in games
35) appsec - Android Runtime Code Injection
36) web-application - SQL injection authentication bypass
37) web-application - Can we consider injection of HTML tags without event attributes as XSS?
38) databases - Weird entry in SQL Server database, is this a result of SQL Injection?
39) appsec - SQL query sanitation (black list)
40) sql-injection - What is the main function of xp_cmdshell in SQL Server and what are its related security issues?
41) php - PHP security hacking question, may be more than just PHP
42) php - Is it possible to get PHP variables using XSS via GET request?
43) injection - Exfiltrate data by injecting functions in Excel 2007 file rendered with PHP
44) malware - Do antivirus programs increase your attack surface and potentially give more power to malware?
45) injection - Are positional parameters vulnerable to command injection?
46) injection - Is it possible for unprivileged user to modify/inject into other user's (root) process?
47) passwords - hide_my_wp wordpress plugin is activated with php eval function that might trying to read /etc/passwd? Is it true?
48) attacks - What type of exploit is an attacker performing by executing the code snippet?
49) injection - XML External Entity injection within the body of a document
50) injection - How to protect against injection into a 3rd party REST API?