Explore >> Select a destination
|
You are here 
|
zhero-web-sec.github.io | ||
| | | | |
blog.octo.com
|
|
| | | | | Introduction - scope of the articleThis series of articles deals with caching in the context of HTTP. When properly done, caching can increase the performance of your application by an order of magnitude. On the contrary, when overlooked or completely ignored, it can lead to some very unwanted side effects caused by misbehaving proxy servers that, ... | |
| | | | |
blog.kotowicz.net
|
|
| | | | | A blog on security, malware, cryptography, pentesting, javascript, php and whatnots | |
| | | | |
labanskoller.se
|
|
| | | | | During 2021 I had access to a facility equipped with an alarm system from Securitas Direct. I had access as a regular user to Securitas Direct's My Pages at mypages-pro.securitas-direct.com, which is used to administer some aspects of one's security alarm installation. That web application suffered a CWE-384 Session Fixation vulnerability which can be used by an attacker in a so-called Man-In-The-Middle (MiTM) position. Home page of Securitas Direct My Pages In summary, if an attacker is on the same netw... | |
| | | | |
www.ayush.nz
|
|
| | | |||
