2024-11-24 14:31:28 +02:00
# Cyber Security Base course project 1
## Purpose
A very insecure web app for the University of Helsinki Cyber Security Base -course.
The point is to demonstrate common cyber security problems and their fixes.
## Description of vulnerabilities
> **_NOTE:_** More detailed description of problems coming soon.
I am using the 2021 OWASP Top Ten list.
LINK: https://github.com/VSinerva/csb-project-1
I am using the basic Django template, so no instructions are included.
FLAW 1:
2024-11-25 16:33:17 +02:00
> ADD EXACT SOURCE LINK
2024-11-24 14:31:28 +02:00
2024-11-25 16:33:17 +02:00
(Broken Access Control) Right now, the notes are identified and deleted with a simple sequential ID.
This makes it trivial for a logged in user to delete notes from other users.
The malicious user simply needs to edit the client-side URL of their POST request.
The issue can easily be fixed by adding the commented out ownership check before deleting a note.
The check compares the logged in user to the owner of the note, and only deletes the note if they match.
This should never cause a problem for a normal user, but it makes sure that the note being deleted
belongs to the logged in user.
2024-11-24 14:31:28 +02:00
FLAW 2:
2024-11-25 16:33:17 +02:00
> ADD EXACT SOURCE LINK
2024-11-24 14:31:28 +02:00
2024-11-24 18:03:12 +02:00
Cryptographic Failure (Weak/No password hashing)
2024-11-24 14:31:28 +02:00
FLAW 3:
2024-11-25 16:33:17 +02:00
> ADD EXACT SOURCE LINK
2024-11-24 14:31:28 +02:00
2024-11-24 18:03:12 +02:00
SQL Injection (Unsanitized SQL query for search)
2024-11-24 14:31:28 +02:00
FLAW 4:
2024-11-25 16:33:17 +02:00
> ADD EXACT SOURCE LINK
2024-11-24 14:31:28 +02:00
2024-11-24 18:03:12 +02:00
Identification and Authentication Failure (No password strength checks)
2024-11-24 14:31:28 +02:00
FLAW 5:
2024-11-25 16:33:17 +02:00
> ADD EXACT SOURCE LINK
2024-11-24 14:31:28 +02:00
2024-11-24 18:03:12 +02:00
CSRF (No CSRF token for Delete)
