HackerOne Top 10 Vulnerability Types
HackOne Top 10 Most Impactful and Rewarded Vulnerability Types (2020)
| Vulnerability | Description | LunaDefend Mitigation |
|---|---|---|
| Cross Site Scripting (XSS) | Cross Site Scripting | |
| Improper Access Control - Generic | Improper Access Control Mitigation | |
| Information Disclosure | Information Disclosure Mitigation | |
| Server-Side Request Forgery (SSRF) | Server Side Request Forgery Mitigation | |
| Insecure Direct Object Reference (IDOR) | Insecure Direct Object Reference Mitigation | |
| Privilege Escalation | Increasing the identity's scope of permissions to be greater than they are allowed to be, as determined by the normal operation of the system. | The LunaDefend Stack is designed to be tolerant of individual compromises, meaning privilege escalation in one component of the stack is not sufficient to gain access to sensitive information. |
| SQL Injection (SQLi) | SQLi Mitigation | |
| Improper Authentication - Generic | Improper Authentication Mitigation | |
| Code Injection | Code Injection Mitigation | |
| Cross-Site Request Forgery (CSRF) | CSRF Mitigation |
