Sensitive Data Exposure or Information Disclosure is a vulnerability that allows an attacker to gather internal information such as software and versions in use, that will allow him to prepare a focused attack, commit identity theft and impersonate other users of a website. (more…)
The number 1 threat according to the owasp top 10 list are injections. Among them is the SQL Injection.
An SQL Injection abuses bad sanitation to inject malicious SQL code into a web server or web application. (more…)
Cross Site Scripting is one of the top dangers in a modern web application. In order to exploit this vulnerability, an attacker has to “inject” malicious javascript code into the site. (more…)
An Integer Overflow is an attack used by hackers and security specialists that abuse the properties of signed and unsigned integers. (more…)
