White Badge
4868 Completed
15 Videos
6 Exercises
White Videos
White Exercises
Easy

From SQL Injection to Shell
- This exercise explains how you can, from a SQL injection, gain access to the administration console, then in the administration console, how you can run commands on the system.
- 1 video
- Completed by 7394 students
- Takes < 1 Hr. on average
- PHP/Apache/Mysql
- SQL Injection
- CWE-89
Easy

CVE-2007-1860: mod_jk double-decoding
- This exercise covers the exploitation of CVE-2007-1860. This vulnerability allows an attacker to gain access to inaccessible pages using crafted requests. This is a common trick that a lot of testers miss.
- 4 videos
- Completed by 5526 students
- Takes 1-2 Hrs. on average
- Tomcat/Apache
- CWE-22