Security Vulnerabilities Back

This chapter mainly focuses on vulnerabilities in web applications, and to note some common cases around them with their solutions at the same time. To make the knowledge more reliable, I have referred to some well known security communities like OWASP, CVE, etc.

In order to bring awareness to what threatens the integrity of websites, I would like to start a series of post on the OWASP top 10 security risks firstly:

  1. Injection
  2. Broken Authentication
  3. Sensitive Data Exposure
  4. XML External Entities (XXE)
  5. Broken Access control
  6. Security misconfigurations
  7. Cross Site Scripting (XSS)
  8. Insecure Deserialization
  9. Using Components with known vulnerabilities
  10. Insufficient logging and monitoring

Such a list should be updated every three to four years by OWASP, and the last released year is 2019.

Comments Copyright © aleen42 all right reserved, powered by aleen42
Empty Comments
Sign in GitHub

As the plugin is integrated with a code management system like GitLab or GitHub, you may have to auth with your account before leaving comments around this article.

Notice: This plugin has used Cookie to store your token with an expiration.

Aleen®

More than a coder, more than a designer

Copyright © aleen42 all right reserved, powered by aleen42

modified at 2019-09-24 15:21:54

20 issues reported

#35 [思] Handlebars 模板应该如何进行预处理2019-01-31 13:42:05Inspiration!

#32 [集] A collection of confusing problems met when developing JavaScript under IE2022-01-11 14:03:30Tasks!

#30 [思] 当需要传递多个不定参数时,该如何设计 JavaScript 函数?2017-05-29 09:42:07Inspiration!

#29 [歸納] 304 Status Code 下的头部信息2018-03-19 12:25:21Communication!Summary!

#28 [歸納] 你以为 JavaScript 没数据结构么?2018-03-19 12:25:04Communication!Summary!

#27 [歸納] JavaScript 之高性能2019-09-20 13:56:28Communication!Summary!

#26 Microtasks? Macrotasks?2017-02-26 18:05:36Communication!

#25 gitbook-edit plugin ignores book.json root configuration element2017-02-24 18:53:37Communication!

#24 [譯] Align SVG Icons to Text and Say Goodbye to Font Icons2017-02-07 10:39:42Translations!

#23 [轉載] Discover the Full Story of City's Buildings2017-02-04 03:17:33Posts!Inspiration!

#22 All books has opened a button for editing on Github2016-11-21 09:38:58Author Announcement!GitBook!

#21 Mingtocat2016-10-22 12:42:38Design!

#20 Enhancement of Gitbook Treeview2016-10-20 11:59:22Enhancement!

#19 [譯] Google Interview University2018-10-29 18:58:52Translations!

#18 [轉載] Styling SVG Content with CSS2016-10-18 18:14:48Posts!Translations!

#17 Drawing in JavaScript2018-05-11 17:03:36Author Announcement!

#15 Learning React Redux2016-08-29 14:22:55Learning Plan!

#14 Learning React Router2016-08-25 10:55:38Learning Plan!

#13 Learning Webpack + React2016-08-25 10:47:15Learning Plan!

#12 GitBook Community in Google+2016-08-19 10:16:16GitBook!