Description: Through this write-up, I intend to convey in simple words how Penetration Testing for API Application is performed. Since it is aimed at complete beginners. I won’t be going in-depth of each and every aspect but would be giving you an overview of the stuff. I will also be…

Hello Techie, Hope you are doing well, So today discussion is about well known bug i.e: Full Path disclosure. Although, It is low/medium in severity depends upon attack vector (Looping this issue with another). In Owasp TOP 10 category comes under Vulnerability Category: A6- Security Misconfiguration Without further delay, I…

Hello TECHIE, Today I’m here to show you some interesting vulnerability. This vulnerability have high risk severity and also had historic impact. Yes, I’m talking about “Struts”. So, before going through further let’s see “what is Struts”? J Description: Apache Struts is a free, open-source, MVC framework for creating elegant…