01. Introduction
  • Introduction
  • Lab setup
02. Injection
  • SQL Injection
  • HTML Injection
  • IFRAME Injection
  • SSI Injection
03. Broken Authentication and Session Management
  • Broken Authentication and Session Management
04. Cross-Site Scripting (XSS)
  • Cross-Site Scripting (XSS)
05. Insecure Direct Object References
  • Insecure Direct Object References
06. Security Misconfiguration
  • Security Misconfiguration
07. Sensitive Data Exposure
  • Sensitive Data Exposure
08. Missing Function Level Access Control
  • Missing Function Level Access Control
09. Cross-Site Request Forgery (CSRF)
  • Cross-Site Request Forgery (CSRF)
10. Using Components with Known Vulnerabilities
  • Using Components with Known Vulnerabilities
11. Unvalidated Redirects and Forwards
  • Unvalidated Redirects and Forwards