This vulnerability was detected using the information from phpinfo() page.
When the “use_only_cookies” option is disabled, PHP will pass the session’s ID through the Uniform Resource Locator (URL), this means you, and other users of your websites, may be exposed to session-type attacks.
In this case, an attacker could easily impersonate a legitimate user by stealing his Session ID\Token.
Simply enable the “session.use_only_cookies” option from php.ini or .htaccess.
Unlike basketballs, “passwords” are things we don’t want to be passed around, especially in a society built around the idea that “mystery” is appealing. We
There’s no way you’ve had a working internet connection in the last year and you haven’t seen or heard the terms PT, Pentest or Penetration
In our world there are many types of people, people that we trust, those who cannot be trusted, liars, suspicious types, amateur and “Noobs” as
Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information
You’ve probably heard that there are teams in the Cyber field called Red Team and Blue Team. Let’s talk about the red one, shall we?
We’ve talked about The Red Team before, but what about The Blue Team? How is this group different from the red one? Why would we
