Add reminders for the upcoming vulnerabilities
This commit is contained in:
Vili Sinervä
GitHub
parent
efee16df40
commit
1ed03f7d53
1 changed files with 5 additions and 5 deletions
10
README.md
10
README.md
|
|
@ -17,20 +17,20 @@ I am using the basic Django template, so no instructions are included.
|
||||||
|
|
||||||
FLAW 1:
|
FLAW 1:
|
||||||
|
|
||||||
Broken Access Control
|
Broken Access Control (Can delete another user's notes)
|
||||||
|
|
||||||
FLAW 2:
|
FLAW 2:
|
||||||
|
|
||||||
Cryptographic Failure
|
Cryptographic Failure (Weak/No password hashing)
|
||||||
|
|
||||||
FLAW 3:
|
FLAW 3:
|
||||||
|
|
||||||
SQL Injection
|
SQL Injection (Unsanitized SQL query for search)
|
||||||
|
|
||||||
FLAW 4:
|
FLAW 4:
|
||||||
|
|
||||||
Security Misconfiguration
|
Identification and Authentication Failure (No password strength checks)
|
||||||
|
|
||||||
FLAW 5:
|
FLAW 5:
|
||||||
|
|
||||||
CSRF
|
CSRF (No CSRF token for Delete)
|
||||||
|
|
|
||||||
Reference in a new issue