Filter
Exclude
Time range
-
Near
Daily CyberSecurity@the_yellow_fall
May 7
Apache Wicket 10.9.0 fixes 3 Critical flaws: Path Traversal (CVE-2026-43975), Session Fixation, and Resource Guard bypass. Secure your Java apps and patch now! #ApacheWicket #JavaSecurity #InfoSec #CyberSecurity #WebDev #PathTraversal #SessionFixation securityonline.info/apache-w…
1
4
350
Securityboat@Securityb0at
21 May 2024
🚨Vulnerability Tuesday🚨 Session Fixation: One of the critical concern in web security. Attackers can force users to use a predetermined session ID, potentially leading to unauthorized access. Stay informed, stay secure!🔐 #VulnerabilityTuesday #SessionFixation #SecurityBoat
1
4
375
ぷよ夫@PuyO_O
2 Nov 2023
#IT用語 #AIイラスト #AIかわいい部 #脆弱性 #SessionFixation #SessionJack セッション固定と、セッションジャック、らしいです。
6
86
The Next Tech@TheNextTech2018
15 Jan 2023
5 Most Common #Vulnerabilities in #Web Applications the-next-tech.com/?p=66971&u… #apps #website #mostcommonvulnerabilitiesinwebapplications #application #commonvulnerabilities #localfileinclusion #sessionfixation #sqlinjection #tnt2022 #webapplications

5 Most Common Vulnerabilities In Web Applications

Cybercrimes have been on the rise in recent years. Cybercriminals usually embed malware into legitimate applications, and they target poorly secured networks...

the-next-tech.com
2
2
68
やまざきkei5
@ymzkei5
27 Jan 2022
『観点3: 攻撃者の用意したリンクによるSessionFixationが起こる』がよく分からないや。。ログイン用リンクを踏んだ後の画面は、パスワードだけ入力を求める(画面に(一部伏せ字で?)ユーザ名が表示されるとしても変更できない)とかではないのね。or 単純にログイン成功後にセッションID変えれば?
GMO Flatt Security株式会社
@flatt_security
25 Jan 2022
技術ブログを公開しました!👩‍💻🧑‍💻 「ログイン機能」の仕様に起因する脆弱性、実装のアンチパターンを紹介しています。開発者の皆様、ぜひお役立てください! Webサービスにおけるログイン機能の仕様とセキュリティ観点 - Flatt Security Blog flattsecurity.hatenablog.com…
1
4
The Practical Stack@thepractstack
10 Dec 2020
Session Fixation attacks are one of the common attacks and Spring security provides a build in feature to handle this attack. buff.ly/3oII5gS #springsecurity #session #springboot #sessionfixation #security
2
Dr.FarFar ( VMH0T3P ) 🇪🇬 🇵🇸@3XS0
19 Oct 2020
Let's Learn about, 1) HTML Injection 2) Using Component of Outdated version 3) Session Fixation #cybersecurity #infosec #informationsecurity #bugbounty #HTMLInjection #SessionFixation link.medium.com/VgjqFLoCHab
1
5
raj Upadhyay@upadhyayraj11
19 Oct 2020
Let's Learn about, 1) HTML Injection 2) Using Component of Outdated version 3) Session Fixation #cybersecurity #infosec #informationsecurity #bugbounty #HTMLInjection #SessionFixation link.medium.com/VgjqFLoCHab
2
1
(((gamliel)))@Gamliel_InfoSec
26 Dec 2019
#CRLF Injection may lead to #SessionFixation or #HTTP Response Splitting. #h1 #OpenReport hackerone.com/reports/446271

X / xAI disclosed on HackerOne: CRLF injection

https://ads.twitter.com was vulnerability to HTTP response splitting in the endpoint https://ads.twitter.com/subscriptions/mobile/landing that allows to an attacker add a malicious header in the...

hackerone.com
9
38
𝕊𝕠𝕞𝕓𝕣𝕖𝕣𝕠 𝔹𝕝𝕒𝕟𝕔𝕠@SombreroBlanc0
8 Dec 2018
Web Application #Penetration Testing Notes. 1 #XXE 2 #Out of band 3 #XSS 4 #SSRF 5 #SQLInjection 6 #SessionFixation 7 #CSRF 8 #OpenRedirect 9 #CRLFInjection 10 #templateInjection 11 #RCE 12 #IDORs 13 #Clickjacking 14 #LFI AND MOORE techvomit.net/web-applicatio…
4
8
Spencer Haley@SpencerHaley
15 Nov 2017
"Securing API keys in client-side JavaScript apps" BillPatrianakos.me/blog/2013… (He is recommending jwt.io/ as his current preferred solution.) #SessionFixation OWASP.org/index.php/Session_… #InfoSec #WebProgrammer 💻🔗
2
Load more