top - 第 6 | CN-SEC 中文网

安全文章

top.location和x-frame-options和xss

“ 菜鸡是可以不用学习的，快去打游戏吧！——鲁迅”今天在测试系统的时候发现了一个有趣的地方，本身这个XSS(反射型的)没啥有趣的，只是想记录下这个知识点。在页面中一段话代码成为关键：if(top.lo...

12月07日159 views评论

阅读全文

安全文章

实战｜ SQL server手工注入

前言最近测试了一个站点，这个站点挺有意思，发现没有关闭错误提示，初步猜测是SQL server数据库，后来验证确实是。在这里记录一下实战过程，并详细讲解一下用到的知识点。首先要对sql server进...

12月06日158 views评论

阅读全文

View-1200: Weaknesses in the 2019 CWE Top 25 Most Dangerous Software Errors

View-1200: Weaknesses in the 2019 CWE Top 25 Most Dangerous Software Errors ID: 1200 Type: Graph Sta...

12月04日CWE(弱点枚举)51 views评论

阅读全文

View-629: Weaknesses in OWASP Top Ten (2007)

View-629: Weaknesses in OWASP Top Ten (2007) ID: 629 Type: Graph Status: Obsolete Objective CWE node...

12月04日CWE(弱点枚举)135 views评论

阅读全文

View-900: Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors

View-900: Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors ID: 900 Type: Graph ...

12月04日CWE(弱点枚举)52 views评论

阅读全文

View-1026: Weaknesses in OWASP Top Ten (2017)

View-1026: Weaknesses in OWASP Top Ten (2017) ID: 1026 Type: Graph Status: Incomplete Objective CWE ...

12月04日CWE(弱点枚举)78 views评论

阅读全文

Category-931: OWASP Top Ten 2013 Category A3 - Cross-Site Scripting (XSS)

Category-931: OWASP Top Ten 2013 Category A3 - Cross-Site Scripting (XSS) ID: 931 Status: Obsolete S...

11月13日CWE(弱点枚举)43 views评论

阅读全文

Category-808: 2010 Top 25 - Weaknesses On the Cusp

Category-808: 2010 Top 25 - Weaknesses On the Cusp ID: 808 Status: Obsolete Summary Weaknesses in th...

11月13日CWE(弱点枚举)45 views评论

阅读全文

Category-812: OWASP Top Ten 2010 Category A3 - Broken Authentication and Session Management

Category-812: OWASP Top Ten 2010 Category A3 - Broken Authentication and Session Management ID: 812 ...

11月13日CWE(弱点枚举)32 views评论

阅读全文

Category-718: OWASP Top Ten 2007 Category A7 - Broken Authentication and Session Management

Category-718: OWASP Top Ten 2007 Category A7 - Broken Authentication and Session Management ID: 718 ...

11月13日CWE(弱点枚举)49 views评论

阅读全文

Category-721: OWASP Top Ten 2007 Category A10 - Failure to Restrict URL Access

Category-721: OWASP Top Ten 2007 Category A10 - Failure to Restrict URL Access ID: 721 Status: Obsol...

11月13日CWE(弱点枚举)56 views评论

阅读全文

Category-716: OWASP Top Ten 2007 Category A5 - Cross Site Request Forgery (CSRF)

Category-716: OWASP Top Ten 2007 Category A5 - Cross Site Request Forgery (CSRF) ID: 716 Status: Obs...

11月13日CWE(弱点枚举)29 views评论

阅读全文

top.location和x-frame-options和xss

实战｜ SQL server手工注入

View-1200: Weaknesses in the 2019 CWE Top 25 Most Dangerous Software Errors

View-629: Weaknesses in OWASP Top Ten (2007)

View-900: Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors

View-1026: Weaknesses in OWASP Top Ten (2017)

Category-931: OWASP Top Ten 2013 Category A3 - Cross-Site Scripting (XSS)

Category-808: 2010 Top 25 - Weaknesses On the Cusp

Category-812: OWASP Top Ten 2010 Category A3 - Broken Authentication and Session Management

Category-718: OWASP Top Ten 2007 Category A7 - Broken Authentication and Session Management

Category-721: OWASP Top Ten 2007 Category A10 - Failure to Restrict URL Access

Category-716: OWASP Top Ten 2007 Category A5 - Cross Site Request Forgery (CSRF)

在线咨询

微信