One time self destructing link to share secure data using php

When you want to share some data and it should be expired after the number of view then take a look at this work.

The below demo will generate a link which will be expired after single view.

This is fofG.php which generate links. DB schema at the bottom.

This is fofAuth.php which will render the data you want to share and can be viewed only once.

schema name “fof”

Demo – Link Generator


XSS Testing Online Free Tool | XSS Online Tester | XSS Scanner

Test for the XSS Online. Just put the URL and test for the XSS Tester.

XSS Tester exploits the ‘same-origin-policy’ concept of web applications to allow hackers to extract information from the system. XSS is a ONLINE website TESTER, SCANNER.

XSS Tester, Scanner online free


Click below link to test for the XSS.
Test XSS

Click the link to test for the XSS SCANNER.

XSS Test is an incredibly common vulnerability, and while often appearing trivial, through modern exploitation techniques it can be used in a range of ways: from acting on behalf of application users, stealing identities in the application, redirecting traffic or even introducing fake content into a corporate website. Just as other exploits that have developed over the years, counter-measures have also been added. Unfortunately, attackers have adapted themselves too.

source = &

Click the link for e-mail spaming.

html input hidden field poor usage can lead to major Web vulnerability

E-commarce, Online Premuium Service providers and many others uses payment medium to get the payment using CC,Net Banking etc. Payment Gateways are the Integration layer between the web application and the Banking service layer. These gateways are mostly the loosely coupled,third party source code provided by the authorized Payment Gateway Providers. Ex of Payment gateways are paypal,authorize,securepay.

Once i found a serious issue on all the applications of a matrimonial website. The payment medium was suffering from CSRF that was leading to access to their premium services for free. I contacted the organization regarding the same and reported the issue upfront. Although I wasn’t expecting any thing much in return but being a very good startup , they should have given something for the the issue that may have lead to a serious loss to them. Those greedy , smart executives pulled out all the Bug information from me and called me cya in the end. 😛

On the similar line , the demo issue is explained below.

Continue reading