12 Injection vulnerabilities

In this chapter

How attackers inject code into web applications
How attackers inject commands into databases
How attackers inject operating system commands
How attackers inject the line-feed character maliciously
How attackers inject malicious regular expressions

Ransomware has been the scourge of the internet in recent years. Ransomware operators work on a franchise model: they lend their malicious software to affiliates, and then those affiliates—hackers themselves—scour the web for vulnerable servers (or buy the addresses of already compromised servers from the dark web) to which they can deploy ransomware. The victims wake up the next day to find that the contents of their servers have been encrypted and that ...

Get Grokking Web Application Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Grokking Web Application Security by Malcolm McDonald

12 Injection vulnerabilities

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly