1  %title: webAppHacking
 2  :hack:
 3  %update 2023-06-03 20:40
 4  
 5  The difference between Broken Authention and Broken Access controls is that authentication allows you to assume someone else's identity or account, where as the access controls allow you to access things you shouldn't be able to under your current identity.
 6  
 7  = Top 10 insecurities = 
 8  Injections
 9  Cross Site Scripting ([[XSS]])
10  XML External Entities (XEE)
11  Broken Authentication
12  Broken Access Controls
13  Security Misconfiguration
14  Insecure Deserialization
15  Using components with Known Vulns
16  Sensitive Data Exposure
17  Insufficient Logging
18  
19  -----
20  = Backlinks =
21  
22  - [[hack|hack]]