Vulnerability Research and Tools

True

False

Vulnerability details

Malware

Proof-of-concept exploit

Temporal metric group

Complexity metric group

Base metric group

Environmental metric group

N-day exploit or attack

0-day exploit

0-day vulnerability

Vulnerability

Defacing websites

Domain Name Server (DNS) attacks

ARP poisoning

Employing malicious code

Cookie snooping

Command injection

Directory traversal

Log tampering

buffer overflow

cross-site request forgery

SQL injection

cross-site scripting

Also known as persistent XSS.

It happens when an application receives data in an HTTP request and includes that data within the immediate response in an unsafe way.

It happens when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way.

It makes use of unsanitized HTML forms.

Buffer overflow

SQL injection

Command injection

Cross-site scripting

cookie hijacking

DoS

session hijacking