Waraxe IT Security Portal

:: Home :: Search :: Your Account :: Forums :: Waraxe Advisories :: Tools ::

December 26, 2025

Menu

Home

Logout

Discussions

	Forums
	Members List
	IRC chat

Tools

	Base64 coder
	MD5 hash
	CRC32 checksum
	ROT13 coder
	SHA-1 hash
	URL-decoder
	Sql Char Encoder

Affiliates

	y3dips ITsec
	Md5 Cracker
	User Manuals
	AlbumNow

Content

	Content
	Sections
	FAQ
	Top

Info

	Feedback
	Recommend Us
	Search
	Journal
	Your Account

User Info

Membership:

Latest: MichaelSnaRe

New Today: 0

New Yesterday: 0

Overall: 9144

People Online:

Visitors: 52

Members: 0

Total: 52

Full disclosure

Defense in depth -- the Microsoft way (part 94): SAFER (SRPv1and AppLocker alias SRPv2) bypass for dummies
Backdoor.Win32.ControlTot al.t / Insecure Credential Storage /MVID-2025-0702
HEUR.Backdoor.Win32.Poiso n.gen / Arbitrary Code Execution /MVID-2025-0701
CyberDanube Security Research 20251215-0 | Multiple Vulnerabilities in Phoenix Contact FL Switch Series
[KIS-2025-09] Control Web Panel <= 0.9.8.1208 (admin/index.php) OS Command Injection Vulnerability
Raydium CP Swap: Unchecked Account Allows Creator Fee Hijacking
[CFP] Security BSidesLjubljana 0x7EA | March 13, 2026
[KIS-2025-08] 1C-Bitrix <= 25.100.500 (Translate Module) Remote Code Execution Vulnerability
[KIS-2025-07] Bitrix24 <= 25.100.300 (Translate Module) Remote Code Execution Vulnerability
nopCommerce 4.90.0 is vulnerable to Cross Site Request Forgery (CSRF) via the Schedule Tasks functionality
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) in the product management functionality
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Currencies functionality.
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Blog posts functionality in the Content Management area
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Attributes functionality
Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)

IT Security and Insecurity Portal

www.waraxe.us Forum Index -> General discussion -> Course Preview: The Art of Exploiting Injection Flaws
	View previous topic :: View next topic

Course Preview: The Art of Exploiting Injection Flaws

Posted: Wed Jul 03, 2013 10:53 am

notsosecure

Beginner

Joined: Feb 18, 2012

Posts: 2

I am delighted to announce that the course 'The Art of Exploiting Injection Flaws' has been selected to run at *ALL* leading IT security events around the world. These are:

Black Hat Las Vegas July 29th-30th
BruCon (Belgium) September 24th-25th
HITB (Malaysia) October 14th and 15th
Ruxcon (Melbourne, Australia) October 22nd-23rd
Appsec (NYC, USA) Nov 18th-19th

The 2 day hands-on course talks about SQLI, LDAP, XPATH, HQLI, XXE and other Injection flaws. A selection of slides from the course can be found here:

http://www.slideshare.net/notsosecure/injection-flaw-teaser

Course Preview: The Art of Exploiting Injection Flaws

www.waraxe.us Forum Index -> General discussion

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

All times are GMT
Page 1 of 1

PCWizardHub - Helping you fix, build, and optimize your PC life
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.039 Seconds