Web Vulnerability Archives

How can an attacker exploit SSI injection vulnerabilities to gain unauthorized access or perform malicious activities on a server?

Saturday, 05 August 2023 by EITCA Academy

Server-Side Include (SSI) injection vulnerabilities can be exploited by attackers to gain unauthorized access or perform malicious activities on a server. SSI is a server-side scripting language that allows the inclusion of external files or scripts into a web page. It is commonly used to dynamically include common content such as headers, footers, or navigation

Published in Cybersecurity, EITC/IS/WAPT Web Applications Penetration Testing, Web attacks practice, bWAPP - Server-Side Include SSI injection, Examination review

Tagged under: Cybersecurity, Input Validation, Server-side Scripting, SSI Injection, Web Application Security, Web Vulnerability

How can HTML injection be used to steal sensitive information or perform unauthorized actions?

Saturday, 05 August 2023 by EITCA Academy

HTML injection, also known as cross-site scripting (XSS), is a web vulnerability that allows an attacker to inject malicious HTML code into a target website. By exploiting this vulnerability, an attacker can steal sensitive information or perform unauthorized actions on the target website. In this answer, we will explore how HTML injection can be used

Published in Cybersecurity, EITC/IS/WAPT Web Applications Penetration Testing, Web attacks practice, Iframe Injection and HTML injection, Examination review

Tagged under: Cross-Site Scripting, CSRF, Cybersecurity, Defacement, HTML Injection, Keylogging, Malware Distribution, Phishing Attacks, Sensitive Information, Session Hijacking, Unauthorized Actions, Web Vulnerability, XSS

EITCA Academy

LOG IN TO YOUR ACCOUNT

FORGOT YOUR PASSWORD?

CREATE AN ACCOUNT

How can an attacker exploit SSI injection vulnerabilities to gain unauthorized access or perform malicious activities on a server?

How can HTML injection be used to steal sensitive information or perform unauthorized actions?