🦄Server-side Attacks
Server-side attacks target the application or service provided by a server, whereas a client-side attack takes place at the client's machine, not the server itself.
four classes of server-side vulnerabilities:
Server-Side Request Forgery (SSRF)
Server-Side Template Injection (SSTI)
Server-Side Includes (SSI) Injection
eXtensible Stylesheet Language Transformations (XSLT) Server-Side Injection
This attack occures when an attacker can manipulate a web application into sending unauthorized requests from the server.
Last updated