Results 1 to 10 of about 16,547 (260)
In recent years, huge increase in attacks and data breaches is noticed. Most of the attacks are performed and focused on the vulnerabilities related to web applications. Hence, nowadays the mitigation of application vulnerabilities is an ignited research
Faris Faisal Fadlalla +1 more
doaj +3 more sources
A Web Second-Order Vulnerabilities Detection Method
Second-order vulnerabilities are more subtle and more destructive than the first-order vulnerabilities. After researching and analyzing the principles of web penetration testing and second-order attack principles, this paper proposes a method to detect ...
Miao Liu, Bin Wang
doaj +3 more sources
Large Language Model-Powered Protected Interface Evasion: Automated Discovery of Broken Access Control Vulnerabilities in Internet of Things Devices [PDF]
Broken access control vulnerabilities pose significant security risks to the protected web interfaces of IoT devices, enabling adversaries to gain unauthorized access to sensitive configurations and even use them as stepping stones for attacking the ...
Enze Wang +8 more
doaj +2 more sources
Approach of Web Application Access Control Vulnerability Detection Based on State Deviation Analysis [PDF]
Attackers can exploit vulnerabilities in Web applications to implement malicious behaviors such as disrupting application functionality and Trojan implantation.For the detection of access control vulnerabilities in Web applications,existing me-thods have
MA Qican, WU Zehui, WANG Yunchao, WANG Xinlei
doaj +1 more source
Remote Penetration Testing with Telegram Bot
The widespread of websites and web applications makes them the main target of cyber attacks. One way to increase security is to perform a penetration test.
Naufal Hafiz +4 more
doaj +1 more source
Web applications are the best Internet-based solution to provide online web services, but they also bring serious security challenges. Thus, enhancing web applications security against hacking attempts is of paramount importance.
Rokia Lamrani Alaoui, El Habib Nfaoui
doaj +1 more source
LogInjector: Detecting Web Application Log Injection Vulnerabilities
Web applications widely use the logging functionality, but improper handling can bring serious security threats. An attacker can trigger the execution of malicious data by writing malicious data to the web application logs and then accessing the view ...
Zulie Pan +4 more
doaj +1 more source
Effective and scalable black-box fuzzing approach for modern web applications
Web applications’ security is critical because we share sensitive data through them frequently, which attracts attackers who exploit their vulnerabilities.
Aseel Alsaedi +2 more
doaj +1 more source
A Clustering Approach for Web Vulnerabilities Detection [PDF]
This paper presents a new algorithm aimed at the vulnerability assessment of web applications following a black-box approach. The objective is to improve the detection efficiency of existing vulnerability scanners and to move a step forward toward the automation of this process. Our approach covers various types of vulnerabilities but this paper mainly
Dessiatnikoff, Anthony +4 more
openaire +1 more source
Grey-Box Fuzzing Based on Reinforcement Learning for XSS Vulnerabilities
Cross-site scripting (XSS) vulnerabilities are significant threats to web applications. The number of XSS vulnerabilities reported has increased annually for the past three years, posing a considerable challenge to web application maintainers.
Xuyan Song +3 more
doaj +1 more source

