Tag feed

#injection-attacks

18 posts0 followers

Explore Hashnode

Alternatives

Trending tags this week

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.devMay 5 · 22 min read

File Inclusion in DVWA

1 Introduction In this post, the File Inclusion vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for local file inclusion (LFI) attacks on all levels is to read

0

Cconnectprofecia.hashnode.devMay 2 · 12 min read

Digital Defence in the AI Age | Profecia Links

For most of the history of cybersecurity, the attacker was a human working a keyboard — clever, patient, persistent, but fundamentally limited by the speed of human thought. That era is ending. The attackers of 2025 and beyond are augmented by AI sys...

0

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.devApr 26 · 28 min read

Blind SQL Injection in DVWA

1 Introduction In this post, the Blind SQL Injection vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to find the version of the SQL

0

CCarlosreversingminds.hashnode.devOct 9, 2025 · 4 min read

Fileless Code Injection in Word without macros (CVE-2017-11882)

Introduction In this POC we are going to demostrate how to perform a fileless code injection into EQNEDT32.EXE (Microsoft Word Equation Editor) . We are going to use the unamer implementation (https://github.com/unamer/CVE-2017-11882 ) (605 bytes) to...

0

NVNilesh Vidurangaazula9713.hashnode.devAug 29, 2025 · 10 min read

AI this, AI that and Prompt Injection

If you haven’t lived under a rock or in Point Nemo, you must have heard about MCP servers and AI browsers. Uncle Ben once(always) said “With great power, comes great responsibility”. With AI and MCP servers’ great power, I think we are a little behin...

0

AHAli Hussainzadakoalasec.hashnode.devAug 25, 2025 · 3 min read

From LaTeX Injection to RCE: A Real Bug Bounty Case

Hello Friends It’s been two months since I took a break from bug bounty hunting. During that time, I graduated from university 🎓, recharged, and now I’m officially back in the game. And guess what? Within just a few days of returning, I landed a cri...

2

DH

KNKhoa Nguyenkhoafrancis.xyzJun 8, 2025 · 5 min read

Command Injection Prevention

We should now have a solid understanding of how command injection vulnerabilities occur and how certain mitigations like character and command filters may be passed. This section will discuss methods we can use to prevent command injection vulnerabil...

0

APAmal PKblog.amalpk.inMay 1, 2025 · 4 min read

NoSQL injection

What is NoSQL databases? NoSQL databases store and retrieve data in a format other than traditional SQL relational tables. They are designed to handle large volumes of unstructured or semi-structured data. As such they typically have fewer relational...

0

MSManish Shivanandhanfreecodecamp.orgApr 25, 2025 · 4 min read

How to Harden Your Node.js APIs – Security Best Practices

If you’ve built an API with Node.js, chances are you’ve thought about security – at least a little. Maybe you’ve heard about SQL injection, brute force attacks, or data leaks. But here’s the thing: it’s not just about big hacks. Even small gaps in yo...

0

SNsanket narawadedbinjection.hashnode.devApr 8, 2025 · 3 min read

SQL Injection

Defination : When an attacker manipulates SQL queries within an application to interfere with database. This can lead to modify the database in unauthorized way. Types of SQL Injection : 1) Error Based SQL Injection : When user provide an Input to th...

0

#injection-attacks

Search Hashnode

#injection-attacks

Explore Hashnode

Trending tags this week

File Inclusion in DVWA

Digital Defence in the AI Age | Profecia Links

Blind SQL Injection in DVWA

Fileless Code Injection in Word without macros (CVE-2017-11882)

AI this, AI that and Prompt Injection

From LaTeX Injection to RCE: A Real Bug Bounty Case

Command Injection Prevention

NoSQL injection

How to Harden Your Node.js APIs – Security Best Practices

SQL Injection