Common Web application vulnerabilities
This article looks at five common Web application attacks, primarily for PHP applications, and then presents a case study of a vulnerable Website that was found through Google and easily exploited. Each of the attacks we'll cover are part of a wide field of study, and readers are advised to follow the references listed in each section for further reading. It is important for Web developers and administrators to have a thorough knowledge of these attacks.
The attacks explained in this article are:
- Remote code execution
- SQL injection
- Format string vulnerabilities
- Cross Site Scripting (XSS)
- Username enumeration
This article gives a very good idea of some of the vulnerabilities, if you are someone who gets affected by this on a regular basis, take a look.