期刊名称:International Journal of Innovative Research in Computer and Communication Engineering
印刷版ISSN:2320-9798
电子版ISSN:2320-9801
出版年度:2017
卷号:5
期号:5
页码:10601
DOI:10.15680/IJIRCCE.2017.0505086
出版社:S&S Publications
摘要:The number of security problems found in web applications has increased tremendously in the recentpast and Cross Site Scripting vulnerability tops the list among them. Web application attacks that exploit the securityproblems are either prying on the data found in the web application or they use the web application as an attack vectoron the visiting customer. Both types of attack rely on user input that is not validated by the web application.Researchers and industry experts state that the Cross-site Scripting (XSS) is the top most vulnerability in the webapplications. Attack on web applications are increasing with the implementation of newer technologies. Consideringthese factors, under this scheme we propose the new Cross-site Scripting along-with Sql-Injection attacks to access thedatabases of venerable resources over the internet world. This scheme presents the results of the investigation onapplication security issues and the intrusion using Cross Site Scripting and Sql-Injection vulnerability too.
关键词:Cross site Scripting; Intrusion; Sql-Injection; Cross Site Request Forgery; Insecure Cryptographic;Storage.
