Securing Web Server Software
To some extent, an organization deploying a third-party web server product is inevitably placing its fate in the hands of
Read morehack
Finding Web Server Flaws
If you are lucky, the web server you are targeting may contain some of the actual vulnerabilities described in this
Read moreEncoding and Canonicalization Vulnerabilities
Encoding flaws have arisen in many kinds of web server software and present an inherent threat in situations where the
Read morePath Traversal Vulnerabilities
Accipiter DirectServer This path traversal flaw could be exploited by placing URL-encoded dot-dot-slash sequences into a request. For more information
Read moreInjecting into Web Scripting Languages
The core logic of most web applications is written in interpreted scripting languages like PHP, VBScript, and Perl. In addition
Read moreBypassing Filters
In some situations, an application that is vulnerable to SQL injection may implement various input filters that prevent you from
Read moreAttacking Access Controls
Common Vulnerabilities Access controls can be divided into two broad categories: vertical and horizontal. Vertical access controls allow different types
Read more