Hack Me If You Can: A Dive into Web App Vulnerabilities

About this talk

Every web app has ghosts lurking in the shadows — hidden vulnerabilities and subtle bugs just waiting to be exploited. In this talk at the ZurichJS Pro Meetup, we explored how attackers slip through the cracks in modern web applications and, more importantly, how to stop them. Through live demos and real-world examples, we unpacked common vulnerability classes, walked through an actual exploit step by step, and distilled the practical security controls every JavaScript developer should have in their toolkit.

Key takeaways

• How attackers identify and exploit common web application vulnerabilities
• A live exploit walkthrough — seeing a real attack from the attacker's perspective
• The most impactful security controls to add to a JavaScript application
• How to think offensively to build defensively