Sensitive Data Exposure
Hi, in this video we are going to see how do we crack the sensitive data exposure of Extreme Vulnerable Node Application (XVNA).
This vulnerability can be found in any attack and on any module, where we could see extra data or sensitive data which a normal user should not see.
Let’s see this in the video below.
Extreme vulnerable node application is available at Github https://github.com/vegabird/xvna and you can download it and test in your localhost.
Prevention:
We need to avoid displaying the sensitive data to all, we can avoid it at configuration level or development level.
Related Articles
Sensitive Data Header
Hi, in this part of Extreme Vulnerable Node Application we do not have any input to be given. But here we could see easily that the header is exposed through which any user could find which technologies we are using and find exploit easily. So our ...Insecure Data Storage
Hi guys, today we are going to see the Insecure Data Storage from the OWASP Top 10 mobile. In this there we have few important storage type through which we face problems(vulnerabilities). The types are as follows SQL Databases. Log Files. XML Data ...XVNA
XVNA is an Extreme Vulnerable Node Application that helps security enthusiasts to learn application security and it’s helps to developers better understand the processes of securing applications and It’s totally legal to break or hack into this. ...OWAP TOP 10 2017
Application Security Risk 2017 The OWASP top ten has been changed and following list is the updated. A1:2017 – Injection A2:2017 – Broken Authentication A3:2017 – Sensitive Data Exposure A4:2017 – XML External Entities (XXE) A5:2017 – Broken Access ...OWASP TOP
The OWASP Top Ten is a powerful awareness document for web application security. The OWASP Top Ten represents a broad consensus about what the most critical web application security flaws are. Project members include a variety of security experts ...