Please enable JavaScript.
Coggle requires JavaScript to display documents.
Web App Penetration Testing (Password Reset Functionality (Leakage Over…
Web App Penetration Testing
Caching Problems
Authentication
SQL Injection
Dictionary Attack
HTTPS Enforcement
Session Regeneration
User Enumeration
XML Processing
CSRF
Sensitive Data Exposure
Password Reset Functionality
Leakage Over Insecure Channel
Leakage via Referer Header
IDOR
Insecure Session Management
Weakness in Lifecycle of Password Reset Link
User Enumeration
Cookie attacks
Leakage of Cookie with sensitive Data
E.G. Cookie in unsecure channel
Cookie Hijacking
E.G. Reflected XSS
Weakness in Cookie Lifecycle
E.G. Server-side Invalidation
XSS via Cookie
E.G. Cross Origin Exploitation
Remote Cookie Tampering
E.G. Comma-separated List of Cookies