davidalvk
Earned a new badge!
Injecting payloads blindfolded
For completing the Injection Attacks module
1509
Users earned this badge
0.07%
Users have this badge
Completed on 22 Aug 2025
Injection Attacks
This module covers three injection attacks: XPath injection, LDAP injection, and HTML injection in PDF generation libraries. While XPath and LDAP injection vulnerabilities can lead to authentication bypasses and data exfiltration, HTML injection in PDF generation libraries can lead to Server-Side Request Forgery (SSRF), Local File Inclusion (LFI), and other common web vulnerabilities. We will cover how to identify, exploit, and prevent each of these injection attacks.