As mentioned previously, I’m doing an online training course – Web Application Penetration Testing – from ELearnSecurity.

Module 10 – Common Vulnerabilities

Module 10 covers common vulnerabilities including some of the OWASP Top 10 Security Risks, plus a wide range of different security threats.

It covers the following:

  • OWASP A4 – Insecure Direct Object Reference
  • OWASP A8 – Failure to Restrict URL Access
  • Path Traversal
  • File Inclusion – including Local and Remote
  • Unrestricted File Upload
  • Clickjacking
  • HTTP Response Splitting
  • Header Injection
  • Logic Flaws
  • Denial of Service (DoS)