WEB SECURITY VULNERABILITY ASSESSMENT AND RECOVERY MACHANISAM

Nowadays web applications have critical logical holes (bug) affecting its security, Thus it makes application as vulnerable and easy to attack by hackers and organized crime. In order to prevent these security problems from occurrence of its maximum importance to understand the typical software faults. This paper contributes the knowledge of widely spread two critical web applications by presenting a field study on most of vulnerabilities like SQL Injection and XSS. By analyzing the security patches of source code which are widely used in web applications written in weak and strong typed languages. In order to understand the way in which these vulnerabilities are really exploited by hackers, and also provides an analysis of the source code of the scripts used to attack them. With the outcomes of this result and its study can be used to train code inspectors and software developers in the detection of such software faults, and also with that outcomes research for realistic vulnerability and attackers can be used to assess security mechanisms, like vulnerability scanners, intrusion detection systems, and static code analyzers. By using various number of software testing techniques tools various level of vulnerability are identified and recovery mechanisms were suggested.