Web application security - the fast guide Chapter 5: Attack Execution - the client | Page 12

MAX Length Attacks User Name User Name Attack requirement: No server side check on the input length. Attack process Using a proxy capture the response containing the page with the form. Alter the value of max length directly as required Submit the form. 2017-05-10 Web Application Security Fast Guide (book slides) By Dr.Sami Khiami Slide 12