Dark horse javaweb353 set complex conditional query - parameter name sql injection case

Dark horse javaweb353 set complex conditional query - parameter name sql injection case Due to professional reasons, I was forced to learn java. But fortunately, a roommate pushed me the learning materials of dark horse, which was stable every semester. During the learning process, it was found that there was an sql injection problem ...

Posted on Sat, 18 Sep 2021 18:03:33 -0400 by jaydeee

Utilization of phar protocol and gopher protocol in SSRF

When learning about SSRF vulnerabilities, we often only focus on the file protocol, because the utilization method is simple. In fact, with the improvement of php version and the specification of programming technology, fewer and fewer vulnerabilities can be directly exploited, so it is necessary to learn to use phar and gopher protocols. phar ...

Posted on Tue, 07 Sep 2021 19:43:59 -0400 by - - NC - -