What is XSS (Cross Site Scripting) ? – A Detailed Understanding the Type of...
XSS is a very commonly exploited vulnerability type which is very widely spread and easily detectable and also it is one of the important vulnerability in OWASP TOP 10.
What is XSS( Cross Site Scripting )? An attacker can inject...
OWASP A10-Unvalidated Redirects and Forwards
Web applications often redirect and forward users to other pages and websites, and use untrusted data to determine the destination pages.
Without proper validation, attackers can redirect victims to phishing or malware sites, or use forwards to use unauthorized pages.
Sometime,...
A-9 Using Components with known Vulnerabilities – Every Developers Should aware
Exploitability of the risk is average, Attacker needs to identify the weak part through scanning or manual analysis.
But the risk is widely spread, Many application has these issues on the grounds that most development teams don't concentrate on guaranteeing their...
A8-Cross-Site Request Forgery (CSRF)
Cross Site Request Forgery is one of the most common form of attack by online spammers and scammers. Exploicity of this attack is bit complex, it's prevalence is common.
But CSRF attacks can be predicted easily and their impact is...
A7 Missing Function Level Access Control
Function Level Access Control can be exploited easily, if there is an missing access control on resource control, exploiting the risk is simple as plugging the URL in browser. Privelance is very common, whereas the detect-ability ratio is Average and...
