EEvalinblog.0xeval.me·Jun 7, 2022 · 4 min readRoad to BSCP - Web Cache PoisoningCache Key Injection (Expert) This lab contains multiple independent vulnerabilities, including cache key injection. A user regularly visits this site's home page using Chrome. To solve the lab, combine the vulnerabilities to execute alert(1) in the ...00
EEvalinblog.0xeval.me·May 17, 2022 · 10 min readRoad to BSCP - OAuth 2.0 authenticationIntroduction to OAuth 2.0 Framework OAuth is a commonly used authorization framework that enables websites and web applications to request limited access to a user's account on another application. Crucially, OAuth allows the user to grant this acc...00
EEvalinblog.0xeval.me·May 10, 2022 · 6 min readRoad to BSCP - File UploadsRemote code execution via web shell upload (Apprentice) This lab contains a vulnerable image upload function. It doesn't perform any validation on the files users upload before storing them on the server's filesystem. If the web server allows to ...00
EEvalinblog.0xeval.me·Mar 18, 2022 · 3 min readEthernaut x Foundry - 0x5 TokenOverview This level introduces us to the following concept(s): Arithmetic underflows/overflows Usage of SafeMath library (and pragma solidity ^0.8.0) unchecked keyword in Solidity GitHub Repository available at: https://github.com/0xEval/ethernaut-...00
EEvalinblog.0xeval.me·Mar 11, 2022 · 3 min readEthereum x Foundry - 0x4 TelephoneOverview This level introduces us to the following concept(s): Differences between msg.sender and tx.origin Phishing in Web 3.0 GitHub Repository available at: https://github.com/0xEval/ethernaut-x-foundry Objective To complete the challenge, we wi...00