CMS

for Drupal: https://nahoragg.medium.com/chaining-cache-poisoning-to-stored-xss-b910076bda4f

example.com/wp-json, You can try CORS, if you find it activated in Endpoint, then try cache poisoning with CORS, it will take you to DOS. This is because when you add Origin: evil.com With cache, any external site that will try to use cors to read data from the API will not be able to, because your original has cache.

PreviousIIS Nextpentesting4arabs

Last updated 9 months ago

for Drupal: https://nahoragg.medium.com/chaining-cache-poisoning-to-stored-xss-b910076bda4f

example.com/wp-json, You can try CORS, if you find it activated in Endpoint, then try cache poisoning with CORS, it will take you to DOS. This is because when you add Origin: evil.com With cache, any external site that will try to use cors to read data from the API will not be able to, because your original has cache.

☀️

SecLists/Discovery/Web-Content/CMS at master · danielmiessler/SecListsGitHub