Web App Vulnerabilities

1. Introduction SSL Insecure Protocols refers to the use of older, weaker versions of the Secure Sockets Layer protocol –...

1. Introduction An SSL/TLS certificate expired on a remote server. This means the security certificate used to encrypt communications has...

1. Introduction 2. Technical Explanation Exploit mechanism: A user with an affected browser attempts to connect to a server using...

1. Introduction SSL/TLS Certificate RSA Keys Less Than 2048 bits refers to using SSL/TLS certificates with RSA keys shorter than...

1. Introduction The SSL/TLS Certificate Signed Using Weak Hashing Algorithm vulnerability means a server’s certificate uses an outdated and insecure...

1. Introduction The SSL RC4 Cipher Suites Supported vulnerability, also known as Bar Mitzvah, means a service allows connections using...

1. Introduction The SSL Version 2 and 3 Protocol Detection vulnerability means a service is using older, insecure ways to...

1. Introduction The SSL/TLS Anonymous Cipher Suites Supported vulnerability means a system allows connections without verifying the identity of the...

1. Introduction SSL/TLS Certificate Common Name Mismatch occurs when the name on a website’s security certificate does not exactly match...

1. Introduction 2. Technical Explanation The vulnerability occurs when a server is configured to use SSL/TLS cipher suites that do...