SQL injection Mitigation : preparedStatement
Padding Oracle Attack
LFI, Local File Inclusion
WebDAV / CVE-2017-7269
Webshell pattern 웹쉘 패턴
redis를 통해 webshell upload
Error-based SQL injection
XXE, XML eXternal Entity
[PHP] hack
Unsafe redirect
SSRF
XSS / CSRF