The app server admin console is automatically installed and not removed. Default accounts aren’t changed. Attacker derives the standard admin pages are on your server, logs in with default passwords, and start playing with the website. This is the kind of Web security risk :

general knowledge science & technology

  1. Cross Site Request Forgery

  2. Insecure Cryptographic Storage

  3. Security Misconfiguration

  4. Unvalidated Redirects and Forwards

Show answer
Correct Option: C

Find more quizzes: