Shieldfy Security WIKI

We're here to help you better use Shieldfy. First, let's figure out if we have a solution in our documentation.

Prototype Pollution
(PP)

Object prototype pollution in javascript

1 entry

Cross Site Request Forgery
(CSRF)

Attack that forces the victim to perform unwanted actions.

1 entry

Cross Site Scripting
(XSS)

vulnerability let attacker execute malicious js scripts

5 entries

Open Redirect
(OR)

unrestricted user redirects.
 

1 entry

Server Side Request Forgery
(SSRF)

Attacker can launch requests from the vulnerable server to internal servers

1 entry

SQL Injection
(SQLI)

Inject malicious queries to get/modify/delete data from your database.

1 entry

XML External Entitites
(XXE)

Dangerous parsing of XML files

1 entry

Unrestricted File Upload
(FU)

Unrestricted file upload

1 entry

Malicuious package
(Malware)

Malicious package infection

1 entry

API Security
(API)

API Security

2 entries

Weak Encryption
(ENCRYPT)

Using weak encryption

1 entry

Local File Inclusion
(LFI)

Leak files and information by exploiting internal inclusion

1 entry

Command Injection
(CI)

Remote code execution via injecting commands/code.

1 entry