Privilege escalation is that attack in which an attacker exploits a software bug to gain access to a resource that is usually protected by the application or user, which leads to a change in privileges for malicious actions that are carried out with greater privileges than expected application developer and system administrator. Known attacks of […]
An e-commerce website with OXID eShop platform can be compromised because of some critical flaws, to prevent your e-commerce site immediately you need to update it. As we know OXID eShop is one of the top e-commerce shop software solutions from Germany whose enterprise edition is being used by industry superiors including Mercedes, BitBurger, and […]
What does mean by Security Misconfigurations ? Security Misconfigurations arises when maintaining security settings are the default, Security misconfigurations can happen at any level of an application stack, including the platform, web server, application server, database, framework, and custom code.Security misconfigurations vulnerabilities could occur if a component is vulnerable to attack due to an insecure […]
what is Broken Access Control ? Broken access control is a very common and very vulnerable vulnerability. Many sites have the potential to accidentally provide access to unauthorized visitors who just cut out a URL that seems to be unsafe and paste it into a browser. Description Access control, sometimes called authorization, is how a […]
Introduction An XML External Entity attack is a type of attack against an application that parses XML input. Many older or terribly configured XML processors evaluate external entity references within XML documents. External entities may be used to disclose internal files with the help of file URI handler, internal file shares, remote code execution, internal […]