Skip to main content

HackerOne Top 10 Vulnerability Types

HackOne Top 10 Most Impactful and Rewarded Vulnerability Types (2020)

VulnerabilityDescriptionLunaDefend Mitigation
Cross Site Scripting (XSS)Cross Site Scripting
Improper Access Control - GenericImproper Access Control Mitigation
Information DisclosureInformation Disclosure Mitigation
Server-Side Request Forgery (SSRF)Server Side Request Forgery Mitigation
Insecure Direct Object Reference (IDOR)Insecure Direct Object Reference Mitigation
Privilege EscalationIncreasing the identity's scope of permissions to be greater than they are allowed to be, as determined by the normal operation of the system.The LunaDefend Stack is designed to be tolerant of individual compromises, meaning privilege escalation in one component of the stack is not sufficient to gain access to sensitive information.
SQL Injection (SQLi)SQLi Mitigation
Improper Authentication - GenericImproper Authentication Mitigation
Code InjectionCode Injection Mitigation
Cross-Site Request Forgery (CSRF)CSRF Mitigation