HackerOne Top 10 Vulnerability Types
HackOne Top 10 Most Impactful and Rewarded Vulnerability Types (2020)
Vulnerability | Description | LunaDefend Mitigation |
---|---|---|
Cross Site Scripting (XSS) | Cross Site Scripting | |
Improper Access Control - Generic | Improper Access Control Mitigation | |
Information Disclosure | Information Disclosure Mitigation | |
Server-Side Request Forgery (SSRF) | Server Side Request Forgery Mitigation | |
Insecure Direct Object Reference (IDOR) | Insecure Direct Object Reference Mitigation | |
Privilege Escalation | Increasing the identity's scope of permissions to be greater than they are allowed to be, as determined by the normal operation of the system. | The LunaDefend Stack is designed to be tolerant of individual compromises, meaning privilege escalation in one component of the stack is not sufficient to gain access to sensitive information. |
SQL Injection (SQLi) | SQLi Mitigation | |
Improper Authentication - Generic | Improper Authentication Mitigation | |
Code Injection | Code Injection Mitigation | |
Cross-Site Request Forgery (CSRF) | CSRF Mitigation |