Top Tweets for #WebSec
๐ OFFICIAL WEBSITE: https://t.co/Pi7kbzAhgi
โจ #ExamsDigest Daily Tech Quiz โ Can You Crack It?
A client allows web app testing but excludes the internal network. What process is this?
#CompTIA #PenTestPlus #PT0003 #PT0002 #EthicalHacking #CyberSecurity #RedTeam #WebSec
Thousands of websites were hijacked in DriveSurge campaigns that used ClickFix and FakeUpdate lures to push malware.
The web now serves pop-ups, malware, and one increasingly sarcastic threat model. #Cybersecurity #WebSec
Day 32 โ๏ธ
- Xss continues. Today was about context, encoding and sanitization. How to recognize and exploit specific contexts, bypass weak filters, and secrue coding practices.
- Solved a lot of ctfs on pico today too
#cybersecurity #websec #xss
Day 31 โ๏ธ
- Not much work. i was busy almost throughout the day but i did a revision and study of everything i've done so far.
We go harder this new week !
#cybersecurity #websecurity #xss
obrigado claude code, obrigado pessoal da bolha de hacking do twitter #websec #bolhahackingdotwitter
#hacking #noobs #nanobananahacking
Day 27 โ๏ธ
i'll probably be focusing on web vulnerabilities for a while.
More Xss
- Today i learned how to apply payloads in different contexts and scenarios
- Continued my study on materials too
#cybersecurity #websec #xss
Day 26 โ๏ธ
- Been learning more about reflected xss in different contexts. 1 lab done
- Spent most of my time solving ctfs on pico ctf or Cylab Academy
#cybersecurity #xss #ctf
Attackers are exploiting a Ghost CMS SQL injection flaw to inject malicious JavaScript and trigger ClickFix attacks on more than 700 sites.
The CMS got popped, the page got poisoned, and the user gets told to click 'fix.' Elegant little disaster chain. #Cybersecurity #WebSec
PortSwigger Web Security Academy is completely free and has the best web application security labs available anywhere. Over 200 hands-on labs covering every OWASP category. No excuse not to have completed it. #PortSwigger #WebSec
SQL injection still tops OWASP for a reason. The core trick: ' closes the string, -- comments out the rest. One quote turns your input from data into code.
Test: ORDER BY 1,2,3... to find column count, then UNION SELECT to extract.
#SQLi #Pentesting #Websec #Security #SysAdmin
Sonuรง: Kazฤฑyฤฑcฤฑlar betona รงarptฤฑ. Sistemi Gemini ile beraber kodlarken, projemi sรถmรผrmeye รงalฤฑลan diฤer AI hฤฑrsฤฑzlarฤฑnฤฑ bloklamak iลin en keyifli ironisi oldu. ๐๐ #dotnet #csharp #websec #softwarearchitecture
๐จ Breeze Cache WordPress plugin flaw lets unauthenticated attackers upload PHP files & seize sites. 100K+ installs at risk. Update immediately and audit /uploads for webshells. Plugins are the #1 WP attack vector. #WordPress #PluginSecurity #WebSec
Another WordPress plugin, another stored XSS. Flipbox Elementor <=2.1.1 allows authors to inject scripts. `esc_html` isn't enough. Unpatched. #WordPress #XSS #WebSec #infosec #cybersecuritynews #CVE #hackers #developers #100daysofcode More info: https://t.co/RxHxGVFGY1
๐ CVE-2026-7602: JeecgBootโs ruleClass handling in fillRule/edit suffers from improper authorization, potentially exposing restricted functionality. #Authorization #JeecgBoot #AppSec #CVE #WebSec https://t.co/VX9pZSMjwk
๐ CVE-2026-7641: The Import and export users and customers plugin has a privilege escalation flaw that can let attackers break role boundaries through incomplete capability filtering. #WordPress #PrivilegeEscalation #Security #CVE #WebSec https://t.co/AhMb451sd8
๐ CVE-2026-7555: SQL injection flaw in Electronic Judging System 1.0 via Username parameter in login.php. Exploit is public. #SQLi #WebSec #Vulnerability #InfoSec https://t.co/pKElvqhxPU
๐ CVE-2026-7578: Unrestricted file upload vulnerability in MacCMS Pro (up to 2022.1.3) within the plugin installation handler. #MacCMS #FileInjection #WebSec #CVE https://t.co/qsIY9Pd85J
๐๏ธ CVE-2026-7447: SQL injection vulnerability in SourceCodester Pet Grooming Management Software 1.0 within admin/update_customer.php. #SQLi #WebSec #Vulnerability https://t.co/ne1El2y8v0
๐ค Speaker Spotlight โ Meet @Adrian__T at #BSidesBUD2026! 20+ years of pentesting. Co-Founder of FORTBRIDGE. BlueHat IL speaker. ๐ฅ
Talk: "Concrete Evidence: Two Races, One RCE"
Real vulns. Real bypasses. Live breakdown. ๐
#BSidesBUD2026 #WebSec #RCE #OffensiveSec#InfoSec
I just published my methodology on how i do recon in the targets
check it now :
https://t.co/W47cReRVby #BugBounty #Recon #websec
Every JWT writeup online covers 2โ3 attacks and stops.
I got tired of jumping between 40 blog posts, so I wrote the whole thing. All in one place.
https://t.co/iCSzQ4GjcS
#infosec #appsec #bugbounty #websec #jwt
Last Seen Hashtags on Sotwe
antalyagay
Seen from Turkey
Quienquiereleche
Seen from United States
kรผrtporno
Seen from Turkey
schoolthot
Seen from Australia
chl
Seen from United Kingdom
somno()********************************************
Seen from Turkey
PovoContraFakeNews
Seen from Brazil
๐ฆ๐๐ก๐ช๐๐ฅ
Seen from Peru
ุนูุชูู_ุงูุดุฑููุฉ
Seen from Egypt
momson nolimit filter:native_video
Seen from Canada
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers