|
You are here |
blog.kotowicz.net | ||
| | | | |
spawnzii.github.io
|
|
| | | | | Introduction Hello, I'm currently a student at ESNA and I'm passionate about web application security. This article describes the discovery of several critical vulnerabilities in the SPIP CMS and Root-Me. With a friend (cc Abyss Watcher) we decided to search for vulnerabilities on the SPIP/Root-Me. From the first days, we managed to find some bugs, XSS, CSRF and later we will discover a RCE. Environment Of course we did not our research directly on root me. | |
| | | | |
bogs.io
|
|
| | | | | CSRF stands for Cross-Site Request Forgery and is one of the most "popular" web application vulnerabilities | |
| | | | |
educatedguesswork.org
|
|
| | | | | ||
| | | | |
blog.martinig.ch
|
|
| | | Architecture is an important asset for good programming and the notion of "pattern" is here to help us apply already trusted code architecture solutions to common problems. Jason McDonald has done a wonderful job to group some of them in a document that should be useful to most software developers. Go to his blog to | ||