Tuesday, January 4, 2022

LDAP injection

special characters are typed in input field to exploit database, which causes data leak
* ( ) . & - _ [ ] ` ~ | @ $ % ^ ? : { } ! '

LDAP injection failed to attack node + mysql
https://chuanshuoge3.blogspot.com/2022/01/prevent-sql-injection.html
reference:
https://www.youtube.com/watch?v=UjEblUrWvb4
https://cheatsheetseries.owasp.org/cheatsheets/LDAP_Injection_Prevention_Cheat_Sheet.html

at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)