JKjishnu kalainhacker-it.hashnode.dev·Oct 17, 2025 · 2 min readInsecure DeserializationInsecure Deserialization:- Insecure Deserialization Insecure deserialization is a serious security vulnerability that occurs when untrusted or malicious data is deserialized (converted from a serialized format back into an object or data structure) w...00
JKjishnu kalainhacker-it.hashnode.dev·Oct 15, 2025 · 11 min readInjectionWhat is Injection? Injection is a type of attack where an attacker puts (or “injects”) harmful code or commands into a program or website to trick it into running unwanted commands or accessing data. OWASP Top 10 in the injection part, first, we need...00
JKjishnu kalainhacker-it.hashnode.dev·Sep 11, 2025 · 2 min readCross-Site Scripting (XSS)1. Definition XSS (Cross-Site Scripting) is a client-side web vulnerability where an attacker injects malicious JavaScript into a web page, which executes in the victim’s browser. This can allow attackers to steal cookies, hijack sessions, modify pa...00
JKjishnu kalainhacker-it.hashnode.dev·Sep 11, 2025 · 4 min readBroken Access ControlBroken Access Control:- What is broken access control? Broken access control is a security flaw where users can access data or perform actions they shouldn't be allowed to for example, a regular user might gain admin-level privileges or view other us...00
JKjishnu kalainhacker-it.hashnode.dev·Sep 10, 2025 · 9 min readXML External Entities (XXE)🔹 XXE (XML External Entity) Definition:XML External Entities (XXE) is a type of application vulnerability that arises from a poorly configured XML parser, which allows the processing of external entities. By exploiting this XXE weakness, an attacker...00