Same Site Scripting

Description

Kayran managed to find Same Site Scripting vulnerability.

Bussines Impact

Same Site Scripting is a type of vulnerability that is caused by common DNS misconfiguration.

Recommendation

Remove all the non-FQ localhost entries from nameserver configurations for domains that host websites that depend on HTTP state management.

More Details

If the desired server is www.example.com at 1.1.1.1 and the server sometimes returns 6.6.6.6, which may belong to evil.com

Reference

https://www.geeksforgeeks.org/same-site-scripting/

Man-In-The-Middle Attacks

Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around

Read More »

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »

Passwords 101

Unlike basketballs, “passwords” are things we don’t want to be passed around, especially in a society built around the idea that “mystery” is appealing. We

Read More »

Exposing the GIT

Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information

Read More »