During the scan,Cytrix managed to found that password fields were sent using the GET method (in the URL).
It might lead to sensitive user information being disclosed.
An attacker could exploit this vulnerability to steal the victim’s password in Clear Text using MITM (Man In The Middle) or check the browser’s history.
To prevent this vulnerability, make sure that all sensitive information is being sent using the POST sending method.
Like mentioned here, There are several HTTP request methods, each with its own purpose and uses, In this article we’ll talk about the TRACE Method.
If you are familiar with programming, you know that Zero ([0]) is usually the starting point of arrays, that is called Zero-based numbering, what does
Disclaimer: We in Cytrix do not support or encourage any forms or acts of Cyber-bullying. We do not intend to hurt or make fun of
Let’s have a “quick” Servers 101 Course. Courtesy of Cytrix! If you’ve been on the internet for over an hour, you probably already heard of
At some point in your life you must have asked, what is a SPA? and, of course, what are the differences between SPA and MPA?
Injections. SQL Injections. Cross-site Scripting (hence the amazing title “Crossing Scripts – XSS”). There all sorts of Injection-Based attacks, if you want to read about
