Mirrors/PayloadsAllTheThings
2
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-12-12 14:22:47 +00:00
Code Issues Projects Releases Packages Wiki Activity
1954 commits 2 branches 6 tags 66 MiB
Commit graph

1954 commits

This branch
This branch
All branches
Author SHA1 Message Date
Swissky
acb509d436 SVG XSS fix typo from #729 + files 2024-11-02 11:27:26 +01:00
Swissky
53ba2932ab
Merge pull request #729 from noraj/patch-1 
XSS in SVG: more examples + nesting
 2024-11-02 11:21:27 +01:00
Swissky
6b8ca37452 Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings 2024-11-01 21:00:34 +01:00
Swissky
690c7764eb Moving CICD to IATT repository 2024-11-01 21:00:03 +01:00
Swissky
f11771b866
Merge pull request #753 from NoPurposeInLife/patch-2 
Update MySQL Injection.md
 2024-10-31 21:23:22 +01:00
NoPurposeInLife
873ac0e727
Update MySQL Injection.md 
Fixed row/data extraction from MySQL Error Based - Extractvalue Function
 2024-10-31 11:25:34 +08:00
Swissky
ca41c9e848 Merge pull request #752 from noraj/patch-2 2024-10-28 18:00:24 +01:00
Swissky
0f621e67d1 SQLmap reduce requests 2024-10-28 17:59:33 +01:00
Swissky
98db867333
Merge pull request #752 from noraj/patch-2 
XXE in docx/xlsx: important warning on recompression
 2024-10-28 17:03:39 +01:00
Alexandre ZANNI
6cbf58e5b0
XXE in docx/xlsx: important warning on recompression 2024-10-28 16:18:35 +01:00
Swissky
6ee918b060 SSTI update 2024-10-23 14:17:18 +02:00
Swissky
7ec97bb77e SSTI - Pages splitted by technology 2024-10-23 13:59:18 +02:00
Swissky
25a664625d Denial of Service 2024-10-23 10:06:45 +02:00
Swissky
37f0740d07
Merge pull request #744 from Swastik-Swarup-Dash/typo1 
fix:Typo_Race-Condition
 2024-10-03 14:40:06 +02:00
Swastik-Swarup-Dash
bd7bd812ae fix:Typo_Race-Condition 2024-10-03 15:23:23 +05:30
Swissky
b57475f34f Moving Kubernetes from PATT to IATT 2024-10-03 11:35:54 +02:00
Swissky
8ececca282
Merge pull request #743 from Swastik-Swarup-Dash/typo 
fix:Typo_Fix namespaces
 2024-10-02 16:31:09 +02:00
Swastik-Swarup-Dash
2fa9441e37 fix:Typo_Fix namespaces 2024-10-02 17:02:52 +05:30
Swissky
d5a6811193 Fix typos 2024-09-16 18:05:54 +02:00
Swissky
d90c73c7ef Moving S3 to another repository 2024-09-15 20:48:07 +02:00
Swissky
c5802aad67 Fix uppercase links and anchor 2024-09-13 22:43:18 +02:00
Swissky
541d89be64 Fix broken pictures 2024-09-13 21:59:29 +02:00
Swissky
3eae8d7458 Fix typo and structure 2024-09-11 17:07:51 +02:00
Swissky
99f3557415 Randomness mt_rand + Analytics 2024-09-06 21:59:41 +02:00
Swissky
1dae291696 IIS MachineKeys + CI/CD + CSPT + ORM leak 2024-08-26 11:27:47 +02:00
Alexandre ZANNI
8e05a2dd2a
XSS in SVG: more examples + nesting 2024-06-19 14:54:19 +02:00
Swissky
314e4da963 SSRF DNS AXFR + LFI PHAR payloads + LFI iconv 2024-06-16 21:17:42 +02:00
Swissky
7e4a38a1a5
Merge pull request #725 from masquerad3r/master 
Create port_swigger_xss_cheatsheet_event_handlers.txt
 2024-06-06 17:52:33 +02:00
masquerad3r
eca067dd7e
Create port_swigger_xss_cheatsheet_event_handlers.txt 
Updated list of event handlers taken from https://portswigger.net/web-security/cross-site-scripting/cheat-sheet#event-handlers.

Useful when the context of reflection is an HTML attribute and one quickly wants to check which attributes are reflected unfiltered by the target application.
 2024-06-06 10:46:13 +02:00
Swissky
c34a2bac15 WAF bypass moved to a separate page 2024-06-03 09:55:29 +02:00
Swissky
2e73069238 XSS Tel URI 2024-06-03 09:37:24 +02:00
Swissky
6d3fef0df3
Merge pull request #723 from cydave/master 
Add additional XSS payload in email addresses RFC5322
 2024-06-02 11:25:45 +02:00
Swissky
cb69cecd11
Merge pull request #721 from MarkCyber/master 
DBMS Identification Via Error
 2024-06-02 11:23:13 +02:00
Swissky
25c94f809a Uniqid + reset-tolkien and sandwich attack 2024-05-31 16:31:23 +02:00
dave
fcf69f8226 Add additional XSS payload in email addresses RFC5322 2024-05-31 13:27:32 +02:00
Swissky
b5251a673f XSLT payloads + Headless Browser 2024-05-31 00:07:21 +02:00
Swissky
ded1d95735 ASP Cookieless + ReDOS backtrack 2024-05-29 23:23:51 +02:00
Swissky
67adf75bc2 CSP updates + Indirect Prompt Injection 2024-05-29 15:32:58 +02:00
Mark
c3af630e1d
Update README.md 2024-05-26 10:40:54 -04:00
Mark
867f243100
Update README.md 2024-05-26 10:32:01 -04:00
Swissky
f723bcbf8a
Merge pull request #718 from idealphase/master 
Update Ruby.md
 2024-05-05 13:08:50 +02:00
Swissky
670b301b1c
Merge pull request #717 from nojanath/master 
Fix link to SecLists/content-type.txt
 2024-05-05 13:07:57 +02:00
idealphase
33d9e24bed
Update Ruby.md 
Change from the invalid 404 URL to the valid one. (https://pentesterlab.com/exercises/ruby_ugadget/course)
 2024-05-05 16:16:36 +07:00
Jonathan Thompson
7a68102a3c Fix link to SecLists/content-type.txt 2024-05-04 11:12:54 -07:00
Swissky
53d9014b2b Regular Expression ReDoS 2024-04-25 17:37:16 +02:00
Swissky
43a8c6a037 Adding socials buttons 2024-04-24 22:02:04 +02:00
Swissky
b245d3cbdd Mkdocs accessibility and search improvement 2024-04-15 21:20:02 +02:00
Swissky
293723d49d
Merge pull request #712 from bsysop/patch-4 
Adding "Hetzner Cloud" to the Summary
 2024-04-05 18:55:52 +02:00
bsysop
dc461f170e
Adding "Hetzner Cloud" to the Summary 2024-04-05 11:55:54 -03:00
Swissky
9571306b9f
Merge pull request #711 from bsysop/patch-3 
Adding Hetzner Cloud Metadata URL
 2024-04-05 15:53:05 +02:00