Explore >> Select a destination

You are here

 victoria.dev
SQL injection and XSS: what white hat hackers know about trusting user input | victoria.dev
| | thomascountz.com
SQL Injection Overview
1.3 parsecs away

Travel
| | Personal site of Thomas Countz
| | www.nodejs-security.com
The Tale of the Vulnerable MCP Database Server
1.1 parsecs away

Travel
| | The MCP Database Server by ExecuteAutomation had a critical vulnerability that allowed SQL injection attacks, bypassing its "read-only" mode. This article explores the flaw, its exploitation, and mitigation strategies.
| | paragonie.com
Everything You Need to Know About Preventing Cross-Site Scripting Vulnerabilities in PHP - Paragon Initiative Enterprises Blog
2.4 parsecs away

Travel
| | Although Cross-Site Scripting is one of the most common vulnerabilities on the Internet, it remains an unsolved problem (unlike SQL Injection).
| | www.thezdi.com
Zero Day Initiative - Getting Unauthenticated Remote Code Execution on the Logsign Unified SecOps Platform
19.0 parsecs away

Travel
| [AI summary] This blog post discusses two critical vulnerabilities in the Logsign Unified SecOps Platform, CVE-2024-5716 (authentication bypass) and CVE-2024-5717 (command injection), which can be combined for remote, unauthenticated code execution.