Security terms

3 terms of 1444 total

🔒 Defending code from the threats that never sleep

Security vulnerabilities do not announce themselves — they wait quietly in code that looks perfectly fine on the surface. This category covers attack vectors, defensive techniques, secure coding practices, and the mental models that help you think like an attacker before one finds you. From SQL injection and XSS to authentication flaws and cryptographic pitfalls, understanding these terms is not optional — it is professional responsibility.

Sort A → Z Recently Added Recently Updated Difficulty Most Viewed Most Rated Most Shared

Level All Beginner Intermediate Advanced

✕ Clear A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

LDAP Injection PHP 5.6+

Unsanitised input manipulates LDAP query filters, bypassing authentication or exposing directory data.

CWE-90 OWASP A3:2021

2mo ago security intermediate 7.5

Local File Inclusion (LFI) PHP 5.0+

A PHP include/require driven by user input that can load arbitrary local files, sometimes leading to code execution.

CWE-98 OWASP A3:2021

2mo ago security intermediate 7.5

Log Injection PHP 5.0+

Writing unsanitised user input into log files allows attackers to forge log entries or inject control characters.

CWE-117 OWASP A9:2021

2mo ago security intermediate 5.3