It is a type of software testing that checks whether the application or product is secured or not. Or Security testing is performed to...

Cross site request forgery happens in authenticated session when the server is trust on the user. CSRF attack occurs when a malicious...

XSS:- It doesn't need an authenticated session and can be exploited when the vulnerable website doesn't do the basic validation or...

Below all headers are mitigating Cross-site scripting. Content Security Policy Header:- system.webServer> <httpProtocol> <customHeaders>...

Currently, OWASP update the Header issue To protect against Cross-Site Scripting, set the 'default-src' policy, or 'script-src' AND...

Missing HTTP ONLY attribute in session cookie <session-config> <cookie-config> <http-only>true</http-only> </session-config>...

Encoding Maintaining data usability Reversed data by  employing same algorithm No secret key Encryption Maintaining data confidentiality...

Phishing Steal the information It is a method of retrieval Phishing attack is use spoofing Steal the information Spoofing Download...

In this attacker uses the UNION Statement for the attack which merges the two or more selected statement for retrieving the data from the...

Session Hijacking:- It is also known as TCP hijacking or cookie hijacking obtaining a session ID over the network. Once a session has...