User Profile




No information has been set by the researcher

Personal website:

Recognised by

None listed.

ahussam's challenge statistics

View Researcher Activity

2 total submissions

2 accepted

0 rejected

Medium/hard There's cross site request forgery (CSRF) protection, but how good is it?

Note: Use a keen eye on this challenge to notice what's happening Our admin panel was hacked because someone discovered a way to force a request to be sent when we visited a malicious website. I...
Category: Cross Site Request Forgery (CSRF)
Completed on 29-09-2018

Medium/hard This strict URL filter should prevent XSS, right?

This one is pretty simple. One parameter is vulnerable, **?url=**. Can you get XSS to execute?
Category: Cross Site Scripting (XSS)
Completed on 29-09-2018