Server-Side Template Injection with Custom Exploit-Reference-Cited by-同舟云学术

Server-Side Template Injection with Custom Exploit

Published:2021-05-10 Issue: Volume: Page:105-108
ISSN:2394-4099
Container-title:International Journal of Scientific Research in Science, Engineering and Technology
language:en
Short-container-title:IJSRSET

Author:

Mamtora Rushi¹,Sharma Dr. Priyanka¹,Patel Jatin¹

Affiliation:

1. School of Information Technology, Artificial Intelligence, and Cyber Security, Rashtriya Raksha University, Gandhinagar, Gujarat, India

Abstract

Cyber attacks are getting progressively incessant, causing a great deal of harm. Attackers take our valuable information by compromising web application security loopholes. Dynamic content that is being incorporated into the html that has been served to the client. assume when you open a site page then you see your name so that is dynamic substance for each client who additionally at any point visits that page. We can inject input fields and they are shipped off the web worker. So ,we need to check for all information handled whose worth is reflected in some structure to get the prepared payload. Then attempt to misuse it dependent on the layouts. This paper discusses the idea of an template injection and its impact on template based web application

Publisher

Technoscience Academy

Subject

General Medicine

Reference5 articles.

1. Vijit Das Noyon, Yeahia Md Abid , Md. Maruf Hassan , Md. Hasan Sharif, Fabiha Nawar Deepa, Rayhanul Islam Rumel, Rafita Haque, Samia Nasrin, Moniruz Zaman. A Study of Ajax Template Injection in Web Applications. https://www.researchgate.net/publication/326668286_A_Study_of_Ajax_Template_Injection_in_Web_Applications

2. M. I. Ahmed, M. M. Hassan, and T. Bhuyian. Local File Disclosure Vulnerability: A Case Study of Public-Sector Web Applications https://www.researchgate.net/publication/322236714_Local_File_Disclosure_Vulnerability_A_Case_Study_of_Public-Sector_Web_Applications

3. Hossain Shahriar, Sarah M. North, YoonJi Lee and Roger Hu. Server-side code injection attack detection based on Kullback-Leibler distance. https://www.researchgate.net/publication/280768581_Server-Side_Code_Injection_Attack_Detection_Based_on_Kullback-Leibler_Distance

4. Yunhui Zheng, Xiangyu Zhang. Path sensitive static analysis of web applications for remote code execution vulnerability detection https://ieeexplore.ieee.org/document/6606611

5. Gary Wassermann; Zhendong Su. Static detection of cross-site scripting vulnerabilities. https://ieeexplore.ieee.org/document/4814128