Session tokens can be stolen after logoutĬonfidential information (SSN, Credit Cards) Hacker can “force” session token on victim Malicious system reconnaissance may assist in Web application returns contents of sensitiveĬross-Site Request Forgery Attacker can invoke “blind” actionsīlind requests to bank account transfer money Site modified to transfer all interactions to the Malicious File Execution Execute shell commands on server, Injection Flaws Attacker can manipulate queries to Hackers can impersonate legitimate users, and IBM AppScan Solution3 Vietsoftware International Inc.Īpplication Threat Negative Impact Example ImpactĬross Site scripting Identity Theft, Sensitive Information IBM AppScan Solution2 Vietsoftware International Inc. Reseacher, founder of IoT and Data processing Labs IBM AppScan Standard - The Web Application Security Solution
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |