The essential guide to secure web development Developing secure and reliable cloud-based web applications is very, very difficult. If you think otherwise, you are either not of this world, or your life has not yet taught you a lesson. If you have already become infected with the idea of a “minimum viable product”. And consider […]
What does mean by Security Misconfigurations ? Security Misconfigurations arises when maintaining security settings are the default, Security misconfigurations can happen at any level of an application stack, including the platform, web server, application server, database, framework, and custom code.Security misconfigurations vulnerabilities could occur if a component is vulnerable to attack due to an insecure […]
what is Broken Access Control ? Broken access control is a very common and very vulnerable vulnerability. Many sites have the potential to accidentally provide access to unauthorized visitors who just cut out a URL that seems to be unsafe and paste it into a browser. Description Access control, sometimes called authorization, is how a […]
Introduction An XML External Entity attack is a type of attack against an application that parses XML input. Many older or terribly configured XML processors evaluate external entity references within XML documents. External entities may be used to disclose internal files with the help of file URI handler, internal file shares, remote code execution, internal […]
What does mean by “Components With Known Vulnerabilities” ? Web services often include a component with a known security vulnerability. When this happens, it falls into this category, no matter which component is vulnerable, which makes it a very frequent discovery. A component with a known vulnerability may be the operating system itself,the Content Management […]