New path and certification for beginners (25% OFF Silver Annual Plan - for a limited time only) Learn More

davidalvk

Earned a new badge!

Badge Icon

Injecting payloads blindfolded

For completing the Injection Attacks module

1509

Users earned this badge

0.07%

Users have this badge

Completed on 22 Aug 2025

Injection Attacks

This module covers three injection attacks: XPath injection, LDAP injection, and HTML injection in PDF generation libraries. While XPath and LDAP injection vulnerabilities can lead to authentication bypasses and data exfiltration, HTML injection in PDF generation libraries can lead to Server-Side Request Forgery (SSRF), Local File Inclusion (LFI), and other common web vulnerabilities. We will cover how to identify, exploit, and prevent each of these injection attacks.