Security testing of web applications for detecting and removing second-order SQL injection vulnerabilities

Security testing of web applications for detecting and removing second-order SQL injection vulnerabilities

Structured query language injection vulnerability (SQLIV) is one of the most prevalent and severe web application vulnerabilities. It is usually exploited by SQL injection attacks (SQLIA) for the purpose of gaining unauthorised access to the back-end databases by altering the original SQL stateme...

Full description

Saved in:

Bibliographic Details
Main Author:	Draib, Najla'a Ateeq Mohammed
Format:	Thesis
Language:	English
Published:	2022
Subjects:	Web applications - Security measures SQL (Computer program language) Computer security
Online Access:	http://psasir.upm.edu.my/id/eprint/113153/1/113153.pdf
Tags:	Add Tag No Tags, Be the first to tag this record!

Similar Items

An approach to improve detecting and removing cross- site scripting vulnerabilities in web applications
by: Hydara, Isatou
Published: (2015)

A process study of novice learning SQL /
by: Tan, Jee Teck
Published: (1995)

Enhancing the security measures for web based application / Herman Md Tahir
by: Md Tahir, Herman
Published: (2015)

An investigation of factors affecting secure software development practices adoption /
by: Zulfikar Ahmed Maher
Published: (2021)

Centralization of authentication and authorization services in a heterogeneous set of web-based applications /
by: Cajic, Almir
Published: (2011)

Modeling of post-incident root cause analysis for cross site request forgery (CSRF) attack
by: Mustafa, Mohd Nawawi
Published: (2015)

Automated intrusion prevention mechanism in enhancing network security /
by: He, Xiao Dong
Published: (2008)

Transport layer security protocol (TLSP) in Telnet (SecTel System) /
by: Haslina Mahmood
Published: (2002)

Two level security approaches for secure XML database centric web services against xpath injections
by: Asmawi, Aziah
Published: (2016)

Credential purpose-based access control for personal data protection in Web-based applications /
by: Norjihan Abdul Ghani
Published: (2013)

E-secure : a security tool for Microsoft Windows server hardening /
by: Harpreet Singh Jaswant Singh
Published: (2011)

Managing information system security compliance by setting controls over documents /
by: Sathish Kumar Rajaratnam
Published: (2012)

SQL-Injection Vulnerability Scanner Using Automatic Creation of SQL-Injection Attacks (MySqlinjector)
by: Shakhatreh, Ala' Yaseen Ibrahim
Published: (2010)

New compendium of RSA vulnerabilities
by: Abd Ghafar, Amir Hamzah
Published: (2020)

Shoulder surfing security threat prevention using shifting directions /
by: Tey, Boon Hau
Published: (2018)

Cyber Security Capability Maturity Model using Maqasid al-Shari'ah approach /
by: Nadwiyah Mohamed Ridza
Published: (2020)

Protective security management in critical sectors of Malaysian government agencies /
by: Mohd Saiful Hisham bin Md. Salleh
Published: (2016)

Security enhancements for globus-based (Grid) local area cluster using port-knocking /
by: Nor Azylia Ahmad Azam
Published: (2010)

Security in e-commerce : user perspective /
by: Sivaram Superamaniam
Published: (2007)

Ehancing security and privacy in local area network with TORVPN using : raspberry pi as access point / Mohamad AfiqHakimi Rosli
by: Rosli, Mohamad AfiqHakimi
Published: (2019)

A tool for modeling software security requirements using security patterns
by: Maher, Zulfikar Ahmed
Published: (2016)

Security framework based multi agent system architecture to facilitate data fetching from cloud data storage
by: Mohamed, Amir Mohamed Talib
Published: (2012)

Enhancing user authentication for cloud web-based application /
by: Beqo, Detar
Published: (2018)

An efficient relational to column oriented database schema transformation technique
by: Zaidi, Norwini
Published: (2019)

Information security culture model in cybersecurity Malaysia /
by: Sharifah Sajidah Syed Noor Mohammad
Published: (2021)

Enhancing Security in Mobile IPv6 with Private Key-Based Binding Update Protocol /
by: Modares, Hero

Investigating Security Awareness among Secondary School Students
by: Saida Issa Masoud Al-Jerbie

Information security policy compliance model for government agency
by: Ramli, Muhamad Amirnazmi
Published: (2018)

A more secure transactions for a database system /
by: Jeelani Gulam
Published: (1997)

A case based reasoning approach for dynamic honeypot /
by: Wira Zanoramy Ansiry Zakaria
Published: (2014)

Dynamic and manageable honeypot : Honeyd@WEB /
by: Chong, Wei Yao
Published: (2005)

Information security awareness amongst students in IIUM /
by: Ahmed, Ibrahim Nasreldin Ibrahim
Published: (2018)

Information security behavior in organizations : influencing factors and management strategies /
by: Barzak, Omar
Published: (2020)

Energy-efficient data security schemes for mobile users in cloud environment /
by: Khan, Abdul Nasir

Network security situation awareness based on indicators extracted
by: Xie, Zeqiang
Published: (2016)

Secure block cipher inspired by the human immune system
by: Ariffin, Suriyani
Published: (2012)

Research study on communication overhead between mobile phone and server in the network with security and without security / Hazie Amira Mohd Ghazali
by: Mohd Ghazali, Hazie Amira
Published: (2016)

Security posture assessment for Shapadu Corporation Sdn. Bhd / Ediwarman Mohamad Taher
by: Mohamad Taher, Ediwarman
Published: (2013)

Securities regulation and the prevention of securities fraud : a comparative study /
by: Engku Rabiah Adawiah Engku Ali
Published: (1998)

Implementation of advanced encryption standard in the transport layer security protocol /
by: Abrar bin Yousuf
Published: (2001)

Services hosted by the Perpustakaan Sultan Abdul Samad, Universiti Putra Malaysia with Cooperation MySyL Group