A simple <img> tag can cost a fortune for business

Real security vulnerabilities always speak louder.

Today we’re going to talk about SSRF attack that allows hackers to send any network requests from the back-end server by using <img> tags.

I came across this vulnerability during penetration testing conducted for two separate projects. Screenshots are taken right out of testing reports. Any confidential data is hidden.

Read more: https://pentesting.dhound.io/blog/img-tag-vulnerability

Related Post

Leave a Reply

Your email address will not be published. Required fields are marked *