TBTaha Benahmadiintahaben.hashnode.dev·Mar 10 · 3 min readXXE ArticleXXE Definition XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. It often allows an attacker to view files on the application server fi...00
TBTaha Benahmadiintahaben.hashnode.dev·Mar 10 · 4 min readSpring security authenticationSpring security authentication بِسْمِ ٱللّٰهِ ٱلرَّحْمٰنِ ٱلرَّحِيمِ In the previous article, we saw how Spring Security builds its filter chain and how every request marches through it. But we left o00
TBTaha Benahmadiintahaben.hashnode.dev·Mar 10 · 5 min readSpring security architectureSpring security architecture بِسْمِ ٱللّٰهِ ٱلرَّحْمٰنِ ٱلرَّحِيمِ I begin my journey of learning spring security 3 months ago. I copy-pasted from a tutorial, it worked, and I felt like a fraud. The c00
TBTaha Benahmadiintahaben.hashnode.dev·Mar 10 · 7 min readPath traversalPath traversal What is path traversal? Path traversal is also known as directory traversal. These vulnerabilities enable an attacker to read arbitrary files on the server that is running an applicatio00
TBTaha Benahmadiintahaben.hashnode.dev·Mar 10 · 2 min readOS command injectionOS command injection What is command injection? Command injection is a vulnerability that allows an attacker to execute operating system (OS) commands on the server that is running an application. A s00