Preview Image

Broken brute-force protection, IP block

Laboratorio de Portswigger sobre Authentication Vulnerabilities

Jan 27, 2025 Portswigger Labs, Authentication Vulnerabilities

Preview Image

Username enumeration via response timing

Laboratorio de Portswigger sobre Authentication Vulnerabilities

Jan 27, 2025 Portswigger Labs, Authentication Vulnerabilities

Preview Image

Username enumeration via subtly different responses

Laboratorio de Portswigger sobre Authentication Vulnerabilities

Jan 23, 2025 Portswigger Labs, Authentication Vulnerabilities

Preview Image

Password reset broken logic

Laboratorio de Portswigger sobre Authentication Vulnerabilities

Jan 22, 2025 Portswigger Labs, Authentication Vulnerabilities

Preview Image

2FA simple bypass

Laboratorio de Portswigger sobre Authentication Vulnerabilities

Jan 22, 2025 Portswigger Labs, Authentication Vulnerabilities

Preview Image

Username enumeration via different responses

Laboratorio de Portswigger sobre Authentication Vulnerabilities

Jan 22, 2025 Portswigger Labs, Authentication Vulnerabilities

Preview Image

DOM based cookie manipulation

Laboratorio de Portswigger sobre DOM Based Vulnerabilities

Jan 21, 2025 Portswigger Labs, DOM Based Vulnerabilities

Preview Image

DOM based open redirection

Laboratorio de Portswigger sobre DOM Based Vulnerabilities

Jan 21, 2025 Portswigger Labs, DOM Based Vulnerabilities

Preview Image

DOM XSS using web messages and JSON.parse

Laboratorio de Portswigger sobre DOM Based Vulnerabilities

Jan 19, 2025 Portswigger Labs, DOM Based Vulnerabilities

Preview Image

DOM XSS using web messages and a JavaScript URL

Laboratorio de Portswigger sobre DOM Based Vulnerabilities

Jan 19, 2025 Portswigger Labs, DOM Based Vulnerabilities