Survey of Web Application Vulnerability Attacks

Al-Khurafi, Ossama B.; AlAhmad, Mohammad A.

doi:10.1109/acsat.2015.46

Cited by 25 publications

(16 citation statements)

References 5 publications

(4 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since HTML archives have a level, serial structure that blends control statements, formatting, and the genuine substance, any non-validated user-supplied information included within the resulting page without legitimate HTML encoding, may lead to markup injection [7]. A reflected attack is typically conveyed through e-mail or an impartial web location.…”

Section: What Is Xxsmentioning

confidence: 99%

A Tutorial on Cross Site Scripting Attack - Defense

Papaspirou¹,

Μαγλαράς²,

Ferrag³

2020

Preprint

View full text Add to dashboard Cite

The danger is still very large from cross site scripting attacks. When designing web applications We must follow as much as we can prevention rules and don’t leave any loophole to our programs. Experience is a great factor for programmers to know these attacks and for a trainee programmer is a difficult task to spot all the weak points. In this article we present a tutorial on launching an XSS attack and also we propose simple solutions.

show abstract

Section: What Is Xxsmentioning

confidence: 99%

A Tutorial on Cross Site Scripting Attack - Defense

Papaspirou¹,

Μαγλαράς²,

Ferrag³

2020

Preprint

View full text Add to dashboard Cite

show abstract

“…ii) Union-based SQLi Union-based SQLi [3] uses the UNION SQL supervisor to join the consequences of something close to two SELECT clarifications into a solitary outcome is then send back as an important piece of the HTTP reaction.…”

Section: Types Of Sql Injection (Sqli)mentioning

confidence: 99%

Survey on Web Application Vulnerability

Patni¹,

Vaidya²

2019

helix

View full text Add to dashboard Cite

Web applications have turned into a fundamental piece of our day to day life. Since web applications contain important sensitive data, programmers attempt to discover vulnerabilities and endeavor them to imitate the client, take data, or damage the application. Web Security is a difficult issue and it can't be ignored. Over the most recent couple of years, the world has seen a phenomenal time of technological development. Unfortunately, alongside the technological development, the attacks have additionally expanded. This paper represents in detail the most overall and unsafe web application vulnerable attacks.

show abstract

“…A study conducted on SQLi, Broken Authentication, Session Management, and XSS web application vulnerability. The author discussed the code level problem analysis of those application layer weaknesses and recommended a guideline for the developers to secure the web application [17]. A study performed on root cause analysis to detect the Session Management and Broken Authentication vulnerabilities and prescribed solutions have been given to reduce the recurring attack of the web application [18].…”

Section: Introductionmentioning

confidence: 99%

Broken Authentication and Session Management Vulnerability: A Case Study of Web Application

Hassan

Nipa

Akter

et al. 2018

International Journal of Simulation: Systems, Science &Amp; Technology

View full text Add to dashboard Cite

Web applications have extensively taken over the roles of atomization and enhancement of prevailing solutions. It also provides different services to the multiple users of the application. In the recent time, performance of the web services are measured through two important properties such as authentication and session management. However, user authentication appears to be crucial when a valid user of the web application inappropriately discontinues their communication while the session remains active and an unauthorized user pick the same session to get access into the system. Broken Authentication and Session Management vulnerability exploitation risk is becoming enormously higher due to attackers creative skills, system's weak design and improper implementation of web applications. The consequence of the above exploitation may result not only identity theft but also removal/tamper confidential information. This paper has analyzed the authentication vulnerability attack i.e. Broken Authentication and Session Management, its exploitation types and their impact upon investigating on 267 websites of public and private sectors in Bangladesh. 56% websites of our samples were found vulnerable with the given weaknesses by conducting the examination using manual penetration testing method following double blind testing strategy. The result shows the impact and percentage of this vulnerability attacks.

show abstract

Survey of Web Application Vulnerability Attacks

Cited by 25 publications

References 5 publications

A Tutorial on Cross Site Scripting Attack - Defense

A Tutorial on Cross Site Scripting Attack - Defense

Survey on Web Application Vulnerability

Broken Authentication and Session Management Vulnerability: A Case Study of Web Application

Contact Info

Product

Resources

About