# Tag: owasp

File Inclusion Illustration

Open Redirect Illustration

JWT Attacks Illustration

OS Command Injection occurs when an attacker tricks an application into executing arbitrary operating system commands on the server, giving them...

Directory Traversal (also called Path Traversal) is when attackers manipulate file paths to access files and directories stored outside the intended...

Insecure Deserialization is one of the most dangerous vulnerabilities in modern web applications, often leading to

Broken Authentication vulnerabilities allow attackers to compromise passwords, keys, session tokens, or exploit other authentication flaws to assume...

Security Misconfiguration occurs when security settings are not properly defined, implemented, or maintained, leaving applications vulnerable to...

Server-Side Template Injection (SSTI) occurs when attackers inject malicious code into template engines, causing the server to execute arbitrary code...