Thiago Teixeira

Cross-Site Scripting (XSS): Stored, Reflected and DOM-Based Attacks — and Why mark_safe and Unsafe Markdown Are Equally Dangerous

Published May 07, 2026 • Updated May 12, 2026 • Cybersecurity Django OWASP Python Web Security

XSS in Django: how stored, reflected and DOM-based attacks work, why mark_safe() and unsafe Markdown open the same hole, and how to migrate to nh3.

Read more →

Published May 04, 2026 • Updated May 12, 2026 • Cybersecurity Django OWASP SQL Injection Web Security

SQL Injection: how attackers exploit unsanitised queries, why Django's ORM stops them, and where the protection ends. OWASP A03:2021, CySA+ VM.

Read more →

Published March 10, 2026 • Updated May 12, 2026 • Cybersecurity Digital Democracy PKI & Cryptography

Petição Brasil validates ICP-Brasil digital signatures automatically, enabling legally binding Popular Initiative Bills in Brazil.

Read more →

Published February 09, 2026 • Updated May 12, 2026 • Cybersecurity Digital Democracy PKI & Cryptography Public Law

PUCRS Capstone (10/10): ICP-Brasil PKI and SHA-256 signatures to validate digital petitions with constitutional legal standing in Brazil.

Read more →