Laboratorios PortSwigger
SQL InjectionCross-site scriptingCross-site request forgery (CSRF)ClickjackingDOM-based vulnerabilitiesCross-origin resource sharing (CORS)XML external entity (XXE) injectionServer-side request forgery (SSRF)HTTP request smugglingOS command injectionServer-side template injectionPath TraversalAccess controlAuthenticationWebSocketsWeb cache poisoningInsecure deserializationInformation disclosureBusiness logic vulnerabilitiesHTTP Host header attacksOAuth authenticationFile upload vulnerabilitiesJWTEssential SkillsPrototype pollutionGraphQL API vulnerabilitiesRace conditionsNoSQL injectionAPI testingWeb LLM attacksWeb cache deception
Last updated