Deserialization Vulnerabilities: Attacking Deserialization in JS

Post Reply
john
Posts: 116
Joined: Wed Jun 13, 2018 9:36 am
Has thanked: 0
Been thanked: 1 time
Contact:

Deserialization Vulnerabilities: Attacking Deserialization in JS

Post by john » Sun Jul 01, 2018 9:18 pm

At the end of this article we will have seen why pentesters should look closely at square bracket notation and access to __proto__. It has good potential in some cases for serous bugs and for developers should check if you depend on non-standard serialization package and how you handle user’s input in it.So lets get the full Report



Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest