Preview Image

SSRF via OpenID dynamic client registration

Laboratorio de Portswigger sobre OAuth

Apr 13, 2025 Portswigger Labs, OAuth Vulnerabilities

Preview Image

Authentication bypass via OAuth implicit flow

Laboratorio de Portswigger sobre OAuth

Apr 13, 2025 Portswigger Labs, OAuth Vulnerabilities

Preview Image

CORS vulnerability with trusted insecure protocols

Laboratorio de Portswigger sobre CORS

Apr 6, 2025 Portswigger Labs, CORS

Preview Image

CORS vulnerability with trusted null origin

Laboratorio de Portswigger sobre CORS

Apr 6, 2025 Portswigger Labs, CORS

Preview Image

CORS vulnerability with basic origin reflection

Laboratorio de Portswigger sobre CORS

Apr 5, 2025 Portswigger Labs, CORS

Preview Image

Multistep clickjacking

Laboratorio de Portswigger sobre Clickjacking

Apr 1, 2025 Portswigger Labs, Clickjacking

Preview Image

Exploiting clickjacking vulnerability to trigger DOM based XSS

Laboratorio de Portswigger sobre Clickjacking

Apr 1, 2025 Portswigger Labs, Clickjacking

Preview Image

Clickjacking with a frame buster script

Laboratorio de Portswigger sobre Clickjacking

Mar 28, 2025 Portswigger Labs, Clickjacking

Preview Image

Clickjacking with form input data prefilled from a URL parameter

Laboratorio de Portswigger sobre Clickjacking

Mar 26, 2025 Portswigger Labs, Clickjacking

Preview Image

Basic clickjacking with CSRF token protection

Laboratorio de Portswigger sobre Clickjacking

Mar 26, 2025 Portswigger Labs, Clickjacking