A Study of Vulnerability Scanners for Detecting SQL Injection and XSS Attack in Websites

Abstract

In the modern world, the internet makes our lives easier. Making use of online services like social media, online banking, and online shopping can provide information while also saving time and resources. As the user’s information is then accessible on the website, maintaining its security is essential. To determine whether a site is susceptible or not, a website vulnerability scanner is utilized. A web attack can happen very quickly if the website is weak. Due to this, data theft is possible. This paper aims to identify the website’s weaknesses and vulnerabilities and make improvements. If a website is vulnerable, attacks can be carried out quickly. It allows for data theft. This paper’s objective is to discover the website’s vulnerabilities and sources of vulnerability so that they can be fixed. If the web app is weak, an attacker could exploit the website by sending in malicious code from the client side. To resolve these problems, this paper outlines potential modern best practices. Also, it is beneficial for web security researchers.

Received: 10 February 2023 | Revised: 2 May 2023 | Accepted: 24 May 2023

Conflicts of Interest

The author declares that she has no conflicts of interest to this work.