Tag: Vulnerability

Articles tagged with Vulnerability

Vulnerability Articles

Demystifying Prototype Pollution and its link to DOM XSS

03 October, 2023

JavaScript, the backbone of many web applications today, brings with it flexibility and potential. At the core of its architecture, every element we interact with is essentially an object, each with its own unique properties and methods. The Role of Prototypes in JavaScript Prototypes allow JS to share attributes or properties between different objects. Every object in JS has a prototype object associated with it, which gives that object its own properties. In other words, an object in JS inherits all the properties of its prototype.

READ article

The Silent Threat of ReDoS: 2023 Real-Life Pentest Case

MATEUSZ LEWCZAK

26 September, 2023

Regular Expression Denial of Service (ReDoS) is a type of vulnerability that arises when an attacker submits a specially crafted input to an application that utilizes regular expressions to validate or process user input. The attacker's input aims to activate a slow or inefficient regex pattern, leading the application to consume excessive resources, such as CPU time or memory.

READ article

How private cache can lead to mass account takeover pentest case

Mateusz Kowalczyk

12 July, 2023

READ article

How Private Cache Can Lead to Mass Account Takeover – pentest case

MATEUSZ KOWALCZYK

12 July, 2023

In many situations, minor vulnerabilities might seem like small fish in the vast ocean of cybersecurity threats. They're often marked as low severity and thus, overlooked by developers who assume that the conditions for their exploitation are too complicated to be met. However, in this article, we're going to challenge that assumption and show you how chaining several 'minor' vulnerabilities can lead to a Mass Account Takeover.

READ article

A professional cybersecurity consultant ready to assist with your inquiry.

Any questions?