Web Applicaton Threats

Yellow Browser
Yellow Browser


Chat Box





Most Popular Web Applicaton Treats

Types of  Threats

Injection Attacks

A web app that is vulnerable to injection attacks accepts untrusted data from an input field without any proper sanitation. By typing code into an input field, the attacker can trick the server into interpreting it as a system command and thereby act as the attacker intended.


A denial-of-service (DoS) attack floods a server with traffic, making a website or resource unavailable. A distributed denial-of-service (DDoS) attack is a DoS attack that uses multiple computers or machines to flood a targeted resource.

Broken Authentication

Broken authentication is an umbrella term given to vulnerabilities wherein authentication and session management tokens are inadequately implemented.

Insecure Direct Object References (IDOR)

This vulnerability exists when someone can edit the URL to access other similar critical information (such as monthly salary slips) without additional authorization.

Security Misconfigurations

According to OWASP top 10 2017, this is the most common web application security threat found across web applications. This vulnerability exists because developers and administrators “forget” to change some default settings such as default passwords, usernames, reference IDs, error messages, etc.

Cross Site Scripting (XSS)

It is an injection-based client-side attack. At its core, this attack involves injecting malicious code in a website application to execute them in the victims’ browsers eventually. Any application that doesn’t validate untrusted data adequately is vulnerable to such attacks.

Craw Security provides the Best essentials Web Application Penetration Testing Services In Singapore with 100 % Job Placement


Visit our website

Contact Us

+65 9351 5400