RatSec

RatSec Blog

Top web exploits 2023

22 January 2024 - Posted in Uncategorized by The XSS Rat

top web exploits 2023 JsonWebToken (CVE-2022-23529). ChatGPT (CVE-2023-28858). Apache Superset (CVE-2023-27524). PaperCut NG/MF (CVE-2023-27350). Fortinet FortiOS (CVE-2022-41328). Adobe ColdFusion

Code Red: Navigating the Maze of API Security with the OWASP Top 10

19 January 2024 - Posted in API by The XSS Rat

The OWASP API Top 10 is a powerful awareness document for web application security that represents a broad consensus about the most critical security risks to web APIs. Here are 10 pieces of

10 Pieces Of JavaScript That Could Cost You Dearly In A Bug Bounty Program

19 January 2024 - Posted in tools by The XSS Rat

Teaching JavaScript to bug bounty hunters involves focusing on parts of the language and its ecosystem that are commonly associated with security vulnerabilities. Here are 10 examples of JavaScript