原创力文档- 1、原创力文档(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。。
- 2、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 3、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
- 4、该文档为VIP文档,如果想要下载,成为VIP会员后,下载免费。
- 5、成为VIP后,下载本文档将扣除1次下载权益。下载后,不支持退款、换文档。如有疑问请联系我们。
- 6、成为VIP后,您将拥有八大权益,权益包括:VIP文档下载权益、阅读免打扰、文档格式转换、高级专利检索、专属身份标志、高级客服、多端互通、版权登记。
- 7、VIP文档为合作方或网友上传,每下载1次, 网站将根据用户上传文档的质量评分、类型等,对文档贡献者给予高额补贴、流量扶持。如果你也想贡献VIP文档。上传文档
查看更多
网站漏洞检测归类和解决方案(Website vulnerability detection, classification and solution).doc
网站漏洞检测归类和解决方案(Website vulnerability detection, classification and solution)
Everything is ready except one crucial element. Last night, the west wind withered green trees, alone on the tall buildings, looking at the end of the road. I will mount a long wind some day and break the heavy waves, and set my cloudy sail straight and bridge the deep, deep sea。 The pen falls into the wind and rain, and the poem becomes the ghost. Who knows nothing? Its never too late to mend. This article is contributed by s8h4a2n6
DOC documents may experience poor browsing on the WAP side. It is recommended that you first select TXT, or download the source file to the local view.
A,
Typical website vulnerability classification
According to the risk level, the website vulnerability can be divided into three kinds of high risk, medium risk and low risk. Among them, high-risk vulnerabilities must be blocked. Some of the loopholes in the medium and low risk vulnerabilities must be blocked. There are also some medium and low risk vulnerabilities, which may be selectively blocked because the cost of plugging may be higher than the losses caused by non blocking. Tools can be used to search the platform for vulnerability scanning, the specific address is: typical website vulnerability classification and corresponding sealing requirements as shown in the table below:
Risk level
1, the high risk of SQL injection 2, cross site vulnerabilities
Medium and low risk 1, default test case file 2, management background landing portal
Medium and low risk 1, email address exists
Vulnerability name
3, XPATH injection leak 3, application error caused by 2, invalid link hole information leakage 4, backup files caused by source code leakage 3, Web application default directory
Sealing requirement
Must plug
Selective plugging
One
Two,
Typical website vulnerability impact and Solutions
1, SQL injection vulnerability impact: this vulnerability belongs to the common vulnerabilities in Web application security, belo
您可能关注的文档
- 情感教学法在初中思想政治课中的运用与研究论文.doc
- 自由、平等与社会正义的比较性视角【精品论文】.doc
- 特殊教育教师职业素质模型的建构.doc
- Your Financial Action PLAN— Simple Steps to Achieve Money Success.doc
- 给高中生的一些备考经验.doc
- 桥架、、插接式母线统一标识(最新).doc
- 中考化学有关实验设计、仪器连接的实验题.doc
- 高三化学第讲 铁、铜及其重要化合物一轮复习精品学案.doc
- 谈虚拟仪器及其在机械工程测试技术中的应用.docx
- 初中生学习经验交流稿-中学生学习经验分享交流稿.docx
- 枇杷叶中齐墩果酸和熊果酸含量的毛细管电泳高频电导法测定.doc
- 一些不等式赛题的证明方法(上).doc
- 社会事业科技发展的国际比较与启示_论文.docx
- nes金手指大全(NES gold finger Encyclopedia).doc
- 连续相同号码的识别(Recognition of consecutive identical numbers).doc
- 2008-2009学年度山东省泗水县七年级语文第一学期期中质量检测卷(2008-2009 the quality of Chinese seven grades in Surabaya County of Shandong Province in the first semester of detection roll).doc
- 学生的社交网络行为及其与人际信任的关系.doc
- 2017届化学全国版单元测试卷(含答案):单元卷五 铁、铜及其化合物 (单元名校模拟卷).doc
- 液液萃取实验报告.doc
- 论真空联合堆载预压用于软基处理(Vacuum preloading combined with Surcharge Preloading for soft foundation treatment).doc
最近下载
- (高清版)B-T 2099.1-2021 家用和类似用途插头插座 第1部分:通用要求.pdf VIP
- 劳动创造美好生活中职生劳动教育全套教学课件.pptx
- 人工智能在高中美术课堂中的应用.pdf
- 西藏自治区日喀则市高一入学数学分班考试真题含答案.docx VIP
- 2025黑龙江省建设投资集团有限公司面向系统内部及社会招聘12人笔试备考试题及答案解析.docx VIP
- 医院医德医风考评公示制度医德医风考评制度及考评实施细则.docx
- 晶体工程资料.pdf VIP
- 成都川师锦华小升初入学分班考试英语考试试题及答案.docx VIP
- 第六章晶体工程.ppt VIP
- ASUS华硕ROG SWIFT PG65UQ中文说明书.pdf VIP
文档评论(0)