Efficiency and effectiveness of web application vulnerability detection approaches: A review
Most existing surveys and reviews on web application vulnerability detection (WAVD)
approaches focus on comparing and summarizing the approaches' technical details …
approaches focus on comparing and summarizing the approaches' technical details …
Empirical analysis of security vulnerabilities in python packages
Software ecosystems play an important role in modern software development, providing an
open platform of reusable packages that speed up and facilitate development tasks …
open platform of reusable packages that speed up and facilitate development tasks …
Systematic review analysis on SQLIA detection and prevention approaches
SQL injection attack (SQLIA) is one of the most severe attacks that can be used against web
database driving applications. Attackers use SQLIA to get unauthorized access and perform …
database driving applications. Attackers use SQLIA to get unauthorized access and perform …
DIAVA: a traffic-based framework for detection of SQL injection attacks and vulnerability analysis of leaked data
SQL injection attack (SQLIA) is among the most common security threats to web-based
services that are deployed on cloud. By exploiting web software vulnerabilities, SQL …
services that are deployed on cloud. By exploiting web software vulnerabilities, SQL …
Tabby: Automated gadget chain detection for java deserialization vulnerabilities
X Chen, B Wang, Z Jin, Y Feng, X Li… - 2023 53rd Annual …, 2023 - ieeexplore.ieee.org
Java is one of the preferred options of modern developers and has become increasingly
more prominent with the prevalence of the open-source culture. Thanks to the serialization …
more prominent with the prevalence of the open-source culture. Thanks to the serialization …
Probing model signal-awareness via prediction-preserving input minimization
This work explores the signal awareness of AI models for source code understanding. Using
a software vulnerability detection use case, we evaluate the models' ability to capture the …
a software vulnerability detection use case, we evaluate the models' ability to capture the …
Understanding the quality of container security vulnerability detection tools
Virtualization enables information and communications technology industry to better
manage computing resources. In this regard, improvements in virtualization approaches …
manage computing resources. In this regard, improvements in virtualization approaches …
An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving
Malicious users can attack Web applications by exploiting injection vulnerabilities in the
source code. This work addresses the challenge of detecting injection vulnerabilities in the …
source code. This work addresses the challenge of detecting injection vulnerabilities in the …
[PDF][PDF] Broken authentication and session management vulnerability: a case study of web application
Web applications have extensively taken over the roles of atomization and enhancement of
prevailing solutions. It also provides different services to the multiple users of the application …
prevailing solutions. It also provides different services to the multiple users of the application …
[HTML][HTML] A hybrid XSS attack (HYXSSA) based on fusion approach: Challenges, threats and implications in cybersecurity
Cross-site scripting (XSS) attacks have been extensively studied in the literature, although
mitigating such attacks remain a challenge for cyber defenders. In this paper, we survey the …
mitigating such attacks remain a challenge for cyber defenders. In this paper, we survey the …