This vulnerability was detected using the information from phpinfo() page.
When the “use_only_cookies” option is disabled, PHP will pass the session’s ID through the Uniform Resource Locator (URL), this means you, and other users of your websites, may be exposed to session-type attacks.
In this case, an attacker could easily impersonate a legitimate user by stealing his Session ID\Token.
Simply enable the “session.use_only_cookies” option from php.ini or .htaccess.
Imagine you’re running a 400 million dollar company, you got the company’s car, insurance and maybe even dental care! Now imagine that all the information
Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around
Adwares pose A Dangerous Distraction.What is an Adware? Why should we care? Why are adwares considered Malicious? How do we get rid of them? In
We’ve talked about The Red Team before, but what about The Blue Team? How is this group different from the red one? Why would we
Kayran scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 30,000+ vulnerabilities.Kayran’s mission is to make
In this article, I’ll talk and explain about HAR Files, so if you don’t know what they are, or, what do we use them for,
