If you are not already familiar with Cross-site Request Forgery (CSRF), we suggest you first read the article entitled: “What Is Cross-site Request Forgery (CSRF) ?“. Detecting Cross-Site Request Forgery Our goal in detecting Cross-site Request Forgery (CSRF) vulnerabilities within […]
In the article entitled “What is SQL Injection (SQLi) ?“, we explained how such vulnerabilities can be introduced into applications and why they are so serious. In particular, we saw that the “root of all SQLi evil” lies in Dynamic […]
Cross-Site Scripting (XSS) remains one of the most common security vulnerabilities currently found in web-applications. This article provides insight into how to test your applications for Cross-Site Scripting (XSS) defects using both manual and automated means. For an introductory description […]
