Tapis

Carian terbaru saya
Tapis mengikut:
Bajet
hingga
hingga
hingga
Jenis
Kemahiran
Bahasa
    Status Pekerjaan
    1,454 xss tugasan ditemui, harga dalam USD

    ...play a pivotal role in my ongoing efforts to bolster web application security, and its development will be documented in a comprehensive thesis paper. Ideal Skills and Experience: - Proficient in Python, with the ability to leverage its capabilities in developing a vulnerability scanner. - Deep understanding of web application architectures and common security vulnerabilities (e.g., SQL injection, XSS). - Experience with cybersecurity practices, specifically in vulnerability identification and assessment. - Familiarity with existing vulnerability scanning tools and methodologies. - Strong analytical skills to effectively assess system weaknesses and suggest mitigations. - Ability to document the development process and findings for inclusion in a thesis paper. Key Requirements:...

    $12 (Avg Bid)
    $12 Avg Bida
    3 bida

    ...application in cybersecurity. - Solid understanding and experience in web application development. - Knowledge of common web app security threats (e.g., XSS, SQL Injection, CSRF). - Experience with implementing user authentication, data encryption, and access control in web applications. **Requirements:** - Develop and integrate TensorFlow AI models to identify and mitigate security threats in real-time. - Ensure the upgraded security measures cover, but are not limited to, user authentication, data encryption, and access control functionalities. - Propose and implement proactive security solutions to prevent common and emerging security issues such as XSS, SQL Injection, and CSRF. - Provide detailed documentation on the security enhancements for future maintenance and up...

    $175 (Avg Bid)
    $175 Avg Bida
    4 bida

    I am in need of a proficient developer who is also seasoned in dealing with website security. The primary aim is to secure my website, built with PHP/MySQL and Codeigniter, from all forms of attacks such as hacking, malware, and cross-site scripting (XSS) amongst others. Expertise I am particularly interested in are: - Advanced knowledge of website security - Experience in deterring data breaches, DDoS attacks, and unauthorized data access - Practical understanding of PHP/MySQL, and Codeigniter My site requires better management of the user authentication and data storage functionalities, considered vulnerability hotspots. Sound security measures need to be implemented to curb data vulnerabilities. Google has detected some coverage issues with the site and I would need this to be...

    $96 (Avg Bid)
    $96 Avg Bida
    29 bida

    ...de datos asociados a esa cuenta de email (servidor, puerto, seguridad). Esta opción de cambio de email debe ser actibable/desactivable. + DOCUMENTACIÓN: comentarios en el código fuente y documentación para facilitar el mantenimiento posterior. SEGURIDAD: todos los accesos a base de datos actualizados en PHP deben ser seguros (prepared statements), protegidos ante ataques de inyección de código o xss. MILESTONES: + Entrega de código actualizado con instrucciones> validación> Pago 70%. + Pruebas durante 24h: verificación desarrollo, corregir posibles errores, si existiesen> Pago 30% restante. -------------------------------------------------------------- 2.- ENGLISH: I have a WEB panel with symfony 3 that I ...

    $610 (Avg Bid)
    Perjanjian Kerahsiaan
    $610 Avg Bida
    27 bida

    ...HTTP (np. cURL) Umiejętność tworzenia testów jednostkowych i funkcjonalnych dla kodu w PHP, zgodnie z zasadami TDD (Test-Driven Development) Znajomość i stosowanie dobrych praktyk programowania, takich jak SOLID, DRY, KISS itp. Umiejętność optymalizacji kodu pod kątem wydajności i skalowalności. Znajomość i stosowanie zabezpieczeń w kontekście integracji, zapobieganie atakom typu SQL Injection, XSS itp. Staranność w tworzeniu dokumentacji kodu oraz instrukcji użytkownika dla stworzonej integracji. Napisane jako bundle do instalacji w Symfony 6 dokumentacja Zadania do wykonania to: Autentykacja z API: Implementacja skryptu autentykacji przy użyciu kluczy API Ustawienie Swagger UI do łatwej dokumentacji Dane testowe do autentykacji: Podamy osobie wybranej

    $20 / hr (Avg Bid)
    $20 / hr Avg Bida
    26 bida

    ...browser extension. This extension will automatically find forms and fields on a webpage and then test them for vulnerabilities using special test data for that website. It automatically works in the background and alerts the user right at the browser if it finds any field or payload vulnerable to an XSS attack. It will give a heads-up to the user about that specific part of the page and add to the user's history. This will focus on detecting and alerting users to potential cross-site scripting (XSS) vulnerabilities that can have several positive outcomes and contribute to enhancing web security: Proactive Security Measures User-Driven Security Practices / Contribution to Web Security Research Customized Payload Testing To make it user-friendly, I'm planning to i...

    $155 (Avg Bid)
    $155 Avg Bida
    16 bida

    I'm in dire need of an expert in web security. My website's security is currently compromised as it's vulnerable to Cross-site scripting (XSS), SQL injection and Cross-site request forgery (CSRF). I urgently require a professional to help address these vulnerabilities. Skills and Experience - Proficient in Network Security, Application Security and User Authentication - Proven knowledge in tackling XSS, SQL injections, and CSRF - Previous experience in web security is a must-have Your role would predominantly involve the mitigation and fixing of these existing issues to improve website application security. This role does not require regular maintenance or monitoring.

    $52 (Avg Bid)
    $52 Avg Bida
    22 bida

    Recently I have been facing WordPress security issues that I am getting from my hosting provider, I would like to fix the security issues and all security hader issues related to WordPress header security. Here are some issues that I found: X-Frame-Options X-XSS-Protection X-Content-Type-Options Content-Security-Policy HTTP Strict-Transport-Security (HSTS) HTTP Public Key Pinning (HPKP) Please run a full scan and fix all HTTP and security-related issues.

    $401 (Avg Bid)
    $401 Avg Bida
    102 bida

    I am seeking a expert developer with a solid background in BigCommerce and web security to help us secure our platform from XSS and code injection attacks. Key tasks and desired skills: * Ability to safeguard against XSS attacks and malicious code injection, specifically from tools like Zoombot. * Proficiency in configuring Content-Security-Policy, with tasks such as blocking all inline scripts and styles. * Expertise in permitting scripts and styles only from trusted sources— I will provide a list of these sources. * Capability to disable eval() function. Ideal candidates should have a deep understanding of web security best practices and prior experience in securing BigCommerce or similar e-commerce platforms.

    $41 / hr (Avg Bid)
    $41 / hr Avg Bida
    37 bida

    Your mission : 1. Comprehensive Web Application Security Assessment 2. Thorough Vulnerability Identification 3. Exploit Simulation and Risk Mitigation 4. Detailed Security Assessment Reports 5. Customized Recommendations for Strengthening Defenses Your abilities : - Bypass Authentication, Code Execution - SQL injection - Security monitoring - XSS (Cross-site scripting) - HTML injection - LFI (Local Life Inclusion) attack - CSRF - Network Security, Backdoors - URL Redirection attack - Host header injection - No Re-direct attack - Brute force attack etc. Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or Certified Information Systems Security Professional (CISSP) would be an advantage.

    $156 (Avg Bid)
    $156 Avg Bida
    19 bida

    ...application. • Understanding of cloud storage, computing, and networking services. • Knowledge of deploying and managing applications in a cloud environment. Web Security: • Strong understanding of web application security practices. • Experience with implementing SSL/TLS, data encryption, and secure user authentication. • Familiarity with common security vulnerabilities (e.g., SQL injection, XSS) and their prevention methods. Ideal Candidate Profile: • At least 3-5 years of experience in full-stack development, particularly in SaaS platform development. • A strong portfolio demonstrating relevant projects, with a focus on SaaS and marketing tools. • Ability to translate complex requirements into functional, user-friendly software. &bull...

    $1846 (Avg Bid)
    $1846 Avg Bida
    92 bida

    ...minimal impact on website performance and broad compatibility with different browsers. 4. User Interface Chrome Extension UI: Intuitive interface for selecting webpage elements and entering JavaScript code. Admin Panel (Optional): Web interface for viewing and managing defined events and actions. 5. Security Code Validation: Ensure all JavaScript entered through the extension is validated to prevent XSS attacks. Server Security: Robust security measures to protect the database and API from unauthorized access and data breaches. 6. Performance Requirements Minimal Latency: Ensure the client-side script fetches and executes JavaScript with minimal delay. Low Overhead: Ensure the extension and script do not significantly affect webpage loading times. 7. Constraints and Limitations B...

    $210 (Avg Bid)
    $210 Avg Bida
    60 bida

    I am looking for a developer to upgrade my CakePHP4 project...with CakePHP and previous experience upgrading from CakePHP4 to CakePHP5 - Strong understanding of PHP and MVC frameworks - Familiarity with database management and migration - Attention to detail and ability to troubleshoot and fix any issues that may arise during the upgrade process - Should work with PHP8.1 or lastest Also we need to prevent stored/persistent cross-site scripting and persistent XSS vulnerabilities Specific Features/Functionalities to Add: - Please provide suggestions and recommendations for any new features or improvements that can be added during the upgrade process Timeline: - The upgrade should be completed within 1-2 weeks. If you have any questions or need further clarification, please feel fr...

    $207 (Avg Bid)
    $207 Avg Bida
    58 bida

    I am looking for a skilled freelancer who can help me with a bug bounty hunting project for a website. U will have t...of vulnerability: - I am not sure about the specific type of vulnerability I am concerned about, so I need someone who has expertise in identifying various types of vulnerabilities such as Cross-site scripting (XSS) and SQL Injection. Report details: - After the bug hunt, I would like a detailed report with recommendations on how to fix the identified bugs and vulnerabilities. Ideal skills and experience: - Strong knowledge and experience in bug bounty hunting - Expertise in identifying and fixing vulnerabilities - Familiarity with various types of vulnerabilities such as XSS and SQL Injection - Ability to provide detailed reports with recommendati...

    $151 (Avg Bid)
    $151 Avg Bida
    42 bida

    ...Includes components such as headers and footers for consistent UI presentation. 8. .htaccess: - Configures server settings to ensure compatibility with the MiniFramework Project. 9. Controller/Handling User Request: - Manages user requests and coordinates interactions between the user and the system. 10. Security/Handling Security: - Focuses on implementing security measures against XSS, CSRF, SQL injection, and more. - Utilizes techniques like try-catch and prepared statements for enhanced security. ### Documentation and UML Requirements: To maintain clarity and facilitate collaboration, comprehensive documentation and Unified Modeling Language (UML) are indispensable for the project. Ensure the following are prepared: - Use Case Diagram: - Illustrates inte...

    $12 / hr (Avg Bid)
    $12 / hr Avg Bida
    15 bida

    ...free or low cost plugin) Security / Maintenance requirements: - Maintain secure connection (SSH already configured on the site) - Use secure api connections wherever possible. - Encrypt any sensitive user data at rest using industry standards (like AES-256) - Input Validation and Sanitization: The plugin should validate and sanitize user inputs to prevent SQL injection, cross-site scripting (XSS), and other common web vulnerabilities. - In the future, we'll need to perform regular Security Audits and Updates as needed to address bugs or vulnerabilities. - Error Handling: The system should handle errors without exposing sensitive information, such as system paths, database details, or other exploitable data. - Rate Limiting and Access Control: We may need to implement ra...

    $3000 - $5000
    Ditampilkan Dimeterai
    $3000 - $5000
    28 bida

    I need the following: User comes to The server delivers html with an iframe inside Inside the iframe there is the content from But the content of the iframe comes from the my-website.com-server When the user clicks on any link of the website inside the iframe the page load is served from the my-website...my-website.com-server which pulls it from So basically I want an iframe, inside of which there is another website rendered. The users can browse this inside-the-iframe-domain almost as if they were on the real but all html comes from my-website.com-server. The idea is that I want to run some javascript on the parent that collects info from the iframe and xss prevents that so I need to serve the content from my server

    $45 (Avg Bid)
    Dijamin
    $45
    7 penyertaan

    ...to make sure you don't show people the wrong data, as well as some that will allow you to echo HTML safely. At this time, we ask you escape all $-variables, options, and any sort of generated data when it is being echoed. That means you should not be escaping when you build a variable, but when you output it at the end. We call this 'escaping late.' Besides protecting yourself from a possible XSS vulnerability, escaping late makes sure that you're keeping the future you safe. While today your code may be only outputted hardcoded content, that may not be true in the future. By taking the time to properly escape when you echo, you prevent a mistake in the future from becoming a critical security issue. This remains true of options you've saved to the dat...

    $32 (Avg Bid)
    $32 Avg Bida
    42 bida

    Hey there, seeking Developer for Website Creation Using Microservices Architecture for a Social Media & E-Commerce Page ? Skills: Agora WebRTC AL ML Node.js, React.js, JavaScript, MongoDB, Redis, Web Sockets. Familiarity with Digital Ocean, AWS It's important that the entire develop...Rooms Food Delivery Tour Guide Beauty and Spa Restaurant Table Reservation Ride Sharing Tickets and Events Lawyers Services of all kinds StayToEnjoy Ads Live Stream Chat System Call and Video Call Help Center Report Center Ticket Center Calendar for Private and Business user Geo Fancing Admin Panel for StayToEnjoy Implement security measures such as encryption, validation and protection against XSS and CSRF attacks. Also we need AI for check content, pictures and video incl. live strea...

    $24869 (Avg Bid)
    $24869 Avg Bida
    59 bida

    Hello everyone, I am looking for an expert who can assist with our websites. We currently manage 3 sites that function primarily as booking forms for different events. most of these sites are clones of each other, sharing the same database and codebase. This means changes made on one can easily be tr...there them to listen in to advice. We're coordinating a client call next week (3rd october or friday 6 october), and your insights would be invaluable. The call will either be on Tuesday evening or Friday morning, based on mutual agreement. If you have the expertise and availability, please let me know, we are looking for a serious professional for this, who knows what the score is on security From XSS to a Directory Traversal etc. Looking forward to working with a dedicated ...

    $140 (Avg Bid)
    $140 Avg Bida
    45 bida

    i launched new site for our company, need a senior QA to do wordpress detailed testing and report all issues related to functionality, SEO, content alignment, speed, any errors, responsiveness, and security or vulnerability on our site (e.g.: XSS, RCE, CSRF, SSRF, SQLi, etc. ) we want to make sure website is hack proof

    $40 (Avg Bid)
    $40 Avg Bida
    28 bida

    ...bottlenecks, optimizing server response times and data loading. Implement caching mechanisms to reduce server load and enhance overall website speed. Conduct load testing and performance tuning to ensure the website can handle expected traffic levels. Security Implementation:Implement security measures to protect user data and the website from threats like SQL injection, cross-site scripting (XSS), and more. Regularly update and patch server-side components to address security vulnerabilities. Collaborate with security experts to perform penetration testing and security audits. API Integration:Integrate third-party APIs or services for features like payment processing, email notifications, or external data retrieval. Ensure seamless communication betwe...

    $151 (Avg Bid)
    $151 Avg Bida
    68 bida

    ...recommendations based on user behavior and preferences. Featured products and best-sellers sections. 9. Reviews and Ratings: User-generated product reviews and ratings. Display of average ratings. 10. Responsive Design: Mobile-responsive layout for a seamless experience on all devices. 11. Security: SSL encryption for secure transactions. Protection against common web vulnerabilities (e.g., SQL injection, XSS). Regular security audits and updates. 12. Admin Panel: Inventory management tools. Inventory syncing. Order processing and tracking. Analytics and reporting. 13. Payment Gateway Integration: Integration with trusted payment gateways for secure transactions. 14. Shipping and Logistics: Delivery Status Monitoring 16. Social Media Integration: Sharing products on social media....

    $709 (Avg Bid)
    $709 Avg Bida
    98 bida

    ...a project titled "Need Env Vulnerable Laravel IPS". The main purpose of this project is to identify vulnerabilities in Laravel and exploit them. Specifically, I am looking to test for the following vulnerabilities: - SQL Injection - Cross-Site Scripting (XSS) - Remote Code Execution (RCE) I would like the freelancer to test for vulnerabilities in all versions of Laravel. Ideal skills and experience for this job include: - Strong knowledge of Laravel - Expertise in identifying and exploiting vulnerabilities such as SQL Injection, XSS, and RCE - Experience in conducting security testing and vulnerability assessments - Familiarity with IPS (Intrusion Prevention System) If you are confident in your abilities to identify and exploit vulnerabilities in Laravel...

    $218 (Avg Bid)
    $218 Avg Bida
    44 bida

    WordPress Expertise - Min 5 years WooCommerce Expertise - Min 5 years Strong skills in HTML, CSS, JavaScript AWS/Azure Experience....Understanding of e-commerce best practices, including product pricing, inventory management, and security. Language Localization: Familiarity with implementing multi-language support and RTL (Right-to-Left) text for Arabic. Security Expertise: Awareness of security best practices, including HTTPS encryption, data encryption, and protection against common web vulnerabilities (e.g., SQL injection, XSS). Payment Gateway Integration: Experience integrating and configuring secure payment gateways like Stripe, PayPal, or others. Version Control: Proficiency with version control systems such as Git for code management and collaboration. Performance Op...

    $7233 (Avg Bid)
    $7233 Avg Bida
    184 bida
    web pentesting Tamat left

    An XSS Challenge Set. Identify the invulnerable XSS challenge, and explain why. An SQLi Challenge Set.

    $102 (Avg Bid)
    $102 Avg Bida
    36 bida

    : Prefer Vercel or Netlify's serverless functions. Firebase's free tier might not be suitable. No pay-as-you-go plans. : Accept string inputs from a Chrome Extension and relay to the ChatGPT API. : Return the ChatGPT API's response to the Chrome Extension. Limit: E... : Return the ChatGPT API's response to the Chrome Extension. Limit: Each device should be limited to 1 request per day, even if the IP address changes due to VPN or other means. Exceeding this should prompt: "You have exceeded the API call limit for today." : Ensure the ChatGPT API key is never exposed to clients. Sanitize inputs against Cross-Site Scripting (XSS). Always use HTTPS for communication. Adherence to points 1, 4, and 5 is essential.

    $83 (Avg Bid)
    $83 Avg Bida
    8 bida

    Project Title: Determine if Phishing link (URL) is malicious. I want an analysis of the links. 4-5 links Need breakdown and confirmation they are indeed malicious. What type of attack used. Overview: I am looking for someone who can analyze website links to determine if they are malicious or not. Believe they are XSS or session id stealing link.

    $18 (Avg Bid)
    $18 Avg Bida
    3 bida

    ...preparing both full reports and summaries of findings Skills: - Security testing - OWASP guidelines - Vulnerability identification - Report preparation List of testing should conduct on our app and web portal 1. Vulnerability Scanning 2. Authentication and Authorization Testing 3. Input Validation Testing 4. Security Misconfiguration Testing 5. Session Management Testing 6. Cross-Site Scripting (XSS) Testing 7. Cross-Site Request Forgery (CSRF) Testing 8. Security Headers Testing 9. Secure File Upload Testing 10. API Security Testing 11. Mobile App Specific Testing (if applicable) 12. Encryption Testing 13. DDoS (Distributed Denial of Service) Testing 14. Social Engineering Testing 15. Compliance Testing 16. Red Team Testing If you have the required skills and experience, ple...

    $119 (Avg Bid)
    $119 Avg Bida
    15 bida

    ...as Appium for automated testing to validate user interface and interactions on mobile platforms. Security Testing: Assure the security of all APIs by confirming the use of SSL certificates. Detect vulnerabilities concerning user data and credentials (our authentication is via Firebase). Verify that appropriate security practices are in place to mitigate risks, such as DB injection, clickjacking, XSS, MIME-Sniffing, and HSTS. Optimization of Costs, Performance, & Load Testing: Ensure the absence of code vulnerabilities that could lead to unwarranted billings at server and API providers. Implement strategies to optimize server and network requests to minimize costs, maintaining performance. Conduct load testing with tools like Apache JMeter to achieve the highest feasible spe...

    $5 / hr (Avg Bid)
    $5 / hr Avg Bida
    21 bida

    Project Title: Fixing Vulnerabilities in Java Libraries I am in need of a skilled developer who can fix vulnerabilities in a set of Java libraries, specifically related to log4j. The vulnerabilities that need to be addressed include SQL Injection, Cross-Site Scripting (XSS), and Remote Code Execution (RCE). Requirements: - Strong knowledge and experience in Java programming - Expertise in identifying and fixing vulnerabilities in Java libraries, particularly log4j - Familiarity with SQL Injection, XSS, and RCE vulnerabilities - Access to the source code of the Java libraries is necessary for fixing the vulnerabilities Timeline: - The completion of this project is required within a week If you have the necessary skills and experience to fix these vulnerabilities and can me...

    $21 / hr (Avg Bid)
    $21 / hr Avg Bida
    37 bida

    ...Middleware and Authentication: Implement middleware for tasks like authentication, logging, error handling, etc. Use libraries like for authentication and authorization. Validation and Input Sanitization: Validate incoming data to ensure it meets the required criteria before processing. Sanitize user inputs to prevent security vulnerabilities like SQL injection and cross-site scripting (XSS) attacks. Error Handling: Implement error handling mechanisms to provide meaningful responses to users and log errors for debugging. Testing and Debugging: Write unit tests and integration tests using frameworks like Mocha, Chai, and Supertest. Use debugging tools and techniques to identify and fix issues in your code. Deployment: Choose a hosting platform (such as Heroku, AWS, or Digita...

    $89 (Avg Bid)
    $89 Avg Bida
    35 bida

    I am seeking a freelancer to design a betting website, specifically a straightforward lottery system, with a substantial emphasis on security. It's crucial to engage with a professional who possesses deep knowledge and experience in the ...guidance on best development practices, hosting strategies, and measures to ensure the system remains efficient and secure. My topmost priority is to ensure the site's operability, speed, and above all, security. It's paramount that client funds remain unhackable, and all aspects related to the database, login, and payment methods are safe for users. Necessary requirements: HTML NoSQL Couch & Mongo XSS (Cross-site scripting) PostgreSQL Database Development Web Security API Azure Cloud Security SSIS (SQL Server Integration Ser...

    $1491 (Avg Bid)
    $1491 Avg Bida
    56 bida

    I'm looking for someone to create something like an exam machine with CTF challenges (preferably an .ova file, something like those machines on Vulnhub) Each vulnerability must return some flag e.g. exploiting FTP you can find file : flag{ftp_is_easy} Vulnerabilities that should appear: Network: - Anonymous FTP login - SMB - Telnet - NFS - SMTP WEB: -XSS stored, reflected (but with filter bypass) -SQLi on login page -Directory Path Traversal -CSRF or SSRF -IDOR Let me know the price and completion time Don't look at the price in my bid, I just don't know about it and don't know how to price it

    $62 (Avg Bid)
    $62 Avg Bida
    4 bida
    METALLORRR Tamat left

    ...and Laravel Shop Hello, I require a person who can do security testing for my Vue.js and Laravel shop application. As part of the project, I need to identify potential vulnerabilities and security loopholes within the application. The goal is to ensure that the shop is secure and protected against common threats. Here are the specific tasks I need your expertise on: 1. Cross-Site Scripting (XSS) Testing: Verify that the application is protected against cross-site scripting attacks, where malicious scripts are injected into web pages. 2. SQL Injection Testing: Test the application to ensure that it is resilient against SQL injection attacks, where malicious SQL statements are inserted into data input fields. 3. Session Hijacking Testing: Assess the application's resista...

    $297 (Avg Bid)
    $297 Avg Bida
    12 bida

    ...as APIs, databases, and third-party services. Security Assessment: Conduct a thorough security assessment of the website to identify vulnerabilities, potential risks, and weaknesses in the system. Security Enhancement: Implement appropriate security measures, protocols, and best practices to ensure the website is safeguarded against common web threats, such as SQL injection, cross-site scripting (XSS), and unauthorized access. Code Review: Review and optimize the existing PHP CodeIgniter, HTML, CSS, and JavaScript code to improve performance, readability, and maintainability. Requirements: Strong proficiency in PHP CodeIgniter, HTML, CSS, JavaScript, and NoSQL. Proven experience in debugging and fixing website issues. Knowledge of secure coding practices and web application secu...

    $99 (Avg Bid)
    $99 Avg Bida
    16 bida

    ...''). The reason for refusal is that the requested media violates the Content Security Policy (CSP) directive implemented on the website. A Content Security Policy is a security mechanism implemented by websites to control the types of content that can be loaded or executed on a page. It helps prevent cross-site scripting (XSS) attacks, code injection, and other malicious activities. In this case, the CSP directive in question is "default-src 3.14.255.26 'self'". It specifies the allowed sources for different types of content on the page. The directive you provided allows content to be loaded from the IP address 3.14.255.26 and the same origin ('self'). However, the media file requested from 'https://essentialreturns

    $479 (Avg Bid)
    $479 Avg Bida
    103 bida

    ...as APIs, databases, and third-party services. Security Assessment: Conduct a thorough security assessment of the website to identify vulnerabilities, potential risks, and weaknesses in the system. Security Enhancement: Implement appropriate security measures, protocols, and best practices to ensure the website is safeguarded against common web threats, such as SQL injection, cross-site scripting (XSS), and unauthorized access. Code Review: Review and optimize the existing PHP CodeIgniter, HTML, CSS, and JavaScript code to improve performance, readability, and maintainability. Requirements: Strong proficiency in PHP CodeIgniter, HTML, CSS, JavaScript, and NoSQL. Proven experience in debugging and fixing website issues. Knowledge of secure coding practices and web application secu...

    $202 (Avg Bid)
    $202 Avg Bida
    13 bida

    ...streaming solution / web application. Where clients on the LAN can upload mp3 and mp4 files, then these files can be managed on a content management page. using CVLC and sub-processing, the program creates a multicast stream of the content. The application is not web facing, I am currently missing many features such as the playlist functionality, and the project has current vulnerabilities such as XSS and RCE. Basic user management implementation using mariaDB and mySQL would be preferential, including the use of CSRF. Any other database solution can be tailored to your needs. For the basics I would like a programmer to either implement this extra functionality, (Content management, playlist creation, etc, maybe even user management, ) and if possible, solve some problems det...

    $841 (Avg Bid)
    $841 Avg Bida
    55 bida

    The regex need to match the below payload so we need to get the 400response in area, as of now getting 200ok response. "paymentOrderReferenceNumber":"<img src=x onerror=alert(1);>" "paymentOrderReferenceNumber":"<svg/onload=alert('XSS')>"

    $97 (Avg Bid)
    $97 Avg Bida
    11 bida

    Develop a marketplace for a niche The marketplace will have 3 types of users: admin, vendor, customers Booking will have parameters such as Date, Time, and Location. Custom...bookings Admin will be able to control the site backend to access analytics, modify changes to the site, etc There will be several forms of payment methods such as Bank Transfer, PayPal, Stripe, etc. As there will be payments on the site security must be top tier and taken into consideration. • Making sure the website is 100% secure preventing any attacks towards website - Cross site scripting (XSS) - SQL Injection Attacks - Cross site request forgery XSRF/CSRF - Session Hijacking - Hide Files from the Browser - Securely Upload Files For more information, full spec, and reference website please send ...

    $664 (Avg Bid)
    $664 Avg Bida
    152 bida

    ...and Databases such as Common Weakness Enumeration (CWE), provide details on the following vulnerabilities: a. SQL Injection. b. Cross-Site Request Forgery (CSRF) c. Cross-Site Scripting (XSS) d. Session Fixation e. Local File Inclusion (LFI) 5. Gain access to the target’s web site in the virtual environment which is provided to you using: a. SQL injection b. Cross-Site Scripting (XSS) 6. Recommend the necessary security solutions for protecting against the following risks and vulnerabilities: a. SQL Injection. b. Cross-Site Request Forgery (CSRF) c. Cross-Site Scripting (XSS) d. Session Fixation e. Local File Inclusion (LFI) ...

    $195 (Avg Bid)
    $195 Avg Bida
    13 bida

    ...Incorrect use of <label for=FORM_ELEMENT> <label for="pa_podokvir1583327">Podokvir</label> <label for="pa_okvir1583384">Okvir</label> snippet <?php if($attribute_name == 'pa_podokvir'):?> <td class="label"><label for="<?php echo esc_attr( sanitize_title( $attribute_name . absint( $product->get_id() ) . $randid ) ); ?>"><?php echo wc_attribute_label( $attribute_name ); // WPCS: XSS ok. ?></label></td> <td class="value"> <div id="podokvirPostId" style="display:none;" podokvir_id="<?php echo apply_filters( 'wpml_object_id', 2220, 'post' ); ?>"></div>...

    $118 (Avg Bid)
    $118 Avg Bida
    25 bida
    Ethical Hacker Tamat left

    ...penetration testing on our web application within a tight timeframe of 1-2 weeks. The main objective of the project is to identify vulnerabilities and potential security risks. The ideal candidate should have experience in web application security and penetration testing. The specific skills required include: - Knowledge of web application vulnerabilities such as SQL injection, cross-site scripting (XSS), and CSRF - Knowledge of web application security standards such as OWASP Top 10 - Experience with penetration testing tools such as Burp Suite, Nmap, and Metasploit - Ability to provide detailed reports on findings and recommendations for remediation The project will involve testing the web application for vulnerabilities and providing a detailed report on findings and recomme...

    $36 / hr (Avg Bid)
    $36 / hr Avg Bida
    38 bida

    Looking for a cyber security mentor to focus on application security, with experience in Python programming. The mentor should have intermediate-level expertise in the field. Ideal skills and experience include: - Strong knowledge of application sec...intermediate-level expertise in the field. Ideal skills and experience include: - Strong knowledge of application security, including threat modeling, secure coding practices, and vulnerability testing - Experience with Python programming language and related security libraries and frameworks - Understanding of web application security, including common vulnerabilities such as cross-site scripting (XSS) and SQL injection - Ability to provide guidance and mentorship to an intermediate-level learner, with clear communication and feedba...

    $11 / hr (Avg Bid)
    $11 / hr Avg Bida
    19 bida

    I am looking for a freelancer to help me protect my website and PHP script from SQL Injection attacks. I need a complete solution as I currently have no security measures in place. The website is medium-size...and experience required: - Expertise in website security and protection against SQL Injection attacks - Knowledge of PHP programming - Experience in securing medium-sized websites with some complexity Additional skills that would be beneficial: - Familiarity with website hosting environments - Experience in handling Distributed Denial of Service attacks - Knowledge of Cross-site Scripting (XSS) protection techniques If you meet the above requirements and have a track record of successfully securing websites from SQL Injection attacks, please reach out to me with your...

    $528 (Avg Bid)
    $528 Avg Bida
    59 bida

    I want to make a blogging site using PHP and MySQL Features : I can change favicon/title/brand of blog Rich text editor blog with thumbnail Secured against SQL Injection, XSS, DDoS and others URL Slug and Sitemap with good SEO Light / Dark theme and Responsive Admin Panel with good stats and setting like makes Suggested Post + Sharing Options + Views Counter + Popular Post Mail Subscription using PHPMailer (If possible) Simple search bar Pagination for 15 posts per page Footer with pages - About us and all Legal pages with social link Admin can add members and remove them (Members can post articles) I have attached few examples for some sections.

    $79 (Avg Bid)
    $79 Avg Bida
    10 bida

    Initial requirements for a Strapi CMS platform with user management capabilities, including sign-in using Google or Microsoft accounts: - User Authentication: The platform should provide authentication capabilities for users to sign up, sign in, and manage their accounts. Social M...have a personalized dashboard where they can view their profile information, manage their content, and perform other relevant actions. User Activity Tracking: Connect to Google Analytics Scalability and Security: The platform should be designed to handle a large number of users, with robust security measures in place, such as encryption of sensitive data, protection against cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks, and adherence to best practices for data privacy and s...

    $638 (Avg Bid)
    $638 Avg Bida
    25 bida

    ...the project will involve replicating the session ID stealing process in order to better understand how it works and how to prevent it. This will involve creating a platform where users will receive a phishing link via their Microsoft email. Clicking on the link will allow us to obtain the session ID of the user's Microsoft account using techniques such as Session Hijacking, Session Fixations, or XSS. If this is not possible, we will send the user a link to download an exe file that will grab the session details. 2. Google Chrome Extension The second part of the project will involve creating a Google Chrome extension that will automatically detect and block phishing links. This extension should work in all cases and be able to detect even the most sophisticated phishing atta...

    $1427 (Avg Bid)
    $1427 Avg Bida
    7 bida

    Artikel Komuniti xss Teratas