Yellow Badge

939 Completed
7 Exercises
Easy image for CVE-2016-10033: PHPMailer RCE

CVE-2016-10033: PHPMailer RCE

  • This exercise covers a remote code execution vulnerability in PHPMailer
  • 1 video
  • Completed by 1841 students
  • Takes Less than an hour on average
  • PHP
Easy image for CVE-2016-2098

CVE-2016-2098

  • This exercise covers a remote code execution vulnerability in Ruby-on-Rails when using render on user-supplied data
  • 1 video
  • Completed by 1747 students
  • Takes Less than an hour on average
  • Rails
Easy image for Cipher block chaining

Cipher block chaining

  • This exercise details how to tamper with data encrypted using CBC
  • 2 videos
  • Completed by 1350 students
  • Takes Between 1 and 2 hours on average
  • PHP
Medium image for Play Session Injection

Play Session Injection

  • This exercise covers the exploitation of a session injection in the Play framework. This issue can be used to tamper with the content of the session while bypassing the signing mechanism
  • 2 videos
  • Completed by 1383 students
  • Takes Less than an hour on average
  • Java/Play
Medium image for Play XML Entities

Play XML Entities

  • This exercise covers the exploitation of a XML entities in the Play framework.
  • 1 video
  • Completed by 1077 students
  • Takes Between 1 and 2 hours on average
  • Java/Play
Medium image for JSON Web Token II

JSON Web Token II

  • This exercise covers the exploitation of an issue with some implementations of JWT
  • 3 videos
  • Completed by 1705 students
  • Takes Between 1 and 2 hours on average
  • PHP
Medium image for Struts s2-045

Struts s2-045

  • This exercise covers a Remote Code Execution in Struts 2.
  • 1 video
  • Completed by 1402 students
  • Takes Less than an hour on average
  • Tomcat/Struts

Black Friday Special! 2x 13.37% PRO subscription

See detail