Web Exploitation This is My cheet sheet for web exploitation basic with reference to Portswigger web-security academy TOPICS server SIde Vulnerabilities SQL Injection Authentication Information Disclosure Access Control and Privilege escalation Path traversal/LFI SSRF XML External Entities Injection /XXE RCE Business logic vulnerabilities Client Side Vulnerabilities CSRF WebSockets Vulnerabilities XSS Dom Based Vulnerability Click jacking CORS Miscellaneous O-Auth Insecure Deserialization HTTP Request Smuggling Web Cache Poisoning Server Side Template Injection Attacking GraphQL Advane Request smuggling HTTP/2
