T R A C K       P A P E R
ISSN:2394-3661 | Crossref DOI | SJIF: 5.138 | PIF: 3.854

International Journal of Engineering and Applied Sciences

(An ISO 9001:2008 Certified Online and Print Journal)

Detection of SQL Injection and XSS Vulnerability in Web Application

( Volume 2 Issue 3,March 2015 ) OPEN ACCESS
Author(s):

Priti Singh, Kirthika Thevar, Pooja Shetty, Bushra Shaikh

Abstract:

The increasing dependence on web applications has made them a natural target for attackers. Among these attacks SQL Injection Attacks (SQLIA) and Cross-Site Scripting attacks are the most prevalent. Our SQL Injection detection method is based on the design of a detection tool for the HTTP request send by clients or users and look for attack signatures. The proposed filter is generic in the sense that it can be used with any web application. Finally we test our proposed security mechanism using the vulnerability scanner developed by us as well as other well-known scanners. Our approach for Cross-Site Scripting detection method describes the possibilities to filter JavaScript in Web applications in server side protection. Server side solution effectively protects against information leakage from the user’s environment. Cross-Site scripting attacks are easy to execute, but difficult to detect and prevent.[1]

Paper Statistics:

Total View : 695 | Downloads : 686 | Page No: 16-21 |

Cite this Article:
Click here to get all Styles of Citation using DOI of the article.