Comparative analysis of web security in open source content management system

Patel, Savan K.; Rathod, V. R.; Prajapati, Jigna B.

doi:10.1109/issp.2013.6526932

Cited by 16 publications

(11 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…W trakcie przeszukiwania zbioru pozycji literaturowych odnaleziono prace traktujące o bezpieczeństwie systemów typu CMS [3,4,5,6]. Okazało się, że praca Comparative Analysis Of Web Security In Open Source Content Management System [3] porusza tą samą tematykę co niniejsza praca, z tym że autorzy porównywali jeszcze platformę Drupal.…”

Section: Przegląd Literaturyunclassified

Analysis of security CMS platforms by vulnerability scanners

Zamościński¹,

Kozieł²

2020

jcsi

View full text Add to dashboard Cite

Subject of security the most popular CMS platforms has been undertaken in the following thesis. There were introduced fundamental informations about subject CMS platforms and vulnerability scanners utilised to research. For research purposes Wordpress and Joomla websites were created and investigated for security by vulnerability scanners OWASP ZAP, Vega, Detectify and Skipfish. Results were grouped by some criteria: vulnerabilities by category and vulnerabilities by threat level. Obtained results were examined in two ways: analysis of residual results, for each website scanning and analysis of aggregated results from all scanners. After that, conclusions about CMS platforms security have been drawn.

show abstract

Section: Przegląd Literaturyunclassified

Analysis of security CMS platforms by vulnerability scanners

Zamościński¹,

Kozieł²

2020

jcsi

View full text Add to dashboard Cite

show abstract

“…Patel and associates describe the life cycle of content in their work and how at every stage of this cycle, security at each level can be improved. All of these challenges are largely solved by means of various add-ons that compensate for the existing failures in the systems and, by their application, these systems seem to be much safer [18].…”

Section: Previous Research and Their Justificationmentioning

confidence: 99%

Security Challenges Behind the Development and Increased Use of Open Source Web Content Management Systems

Viduka

Kraguljac

Lavrnić

2020

JIOS

View full text Add to dashboard Cite

Nowadays the IT market is enriched with free Open Source Web Content Systems offers that are available to all users. No system is perfect, and some of them have better solutions in one segment but are more vulnerable in others and vice versa, all in order to be more user-friendly. The most common form of Content Management System (CMS) implemented on the Internet today is the Web Content Management System(WCMS). This solution includes numerous advantages for site administrators as well as communication with the site designer for all users in order to improve the content, through written remarks, opinions and evaluations of the site content, resulting in a more dynamic and interactive site. This modern approach offers users with a poor IT background the opportunity to be independent and creative in creating their own website. In this paper we present data collected from several websites monitored for various cyber-attacks. Moreover, we will describe and analyze security challenges that follow cyber-attacks. During the monitoring process we followed 15 web addresses over a period of nine months and collected 520 reports of various cyber-attacks. The following analysis presents the different kinds of attacks, their frequency and some of the ways to reduce cyber-attacks to the lowest possible level.

show abstract

“…More related to the work presented here in this paper is the background literature that have attempted to scan services with specific tools with the goal of discovering vulnerabilities within these services and propose means by which such flaws could be avoided in the future. Examples of such work are seen in [13][14][15]. In [13], the authors present a case study that covers penetration testing of a single target application.…”

Section: Research Backgroundmentioning

confidence: 99%

“…This is achieved by means of tools and static code analysis. In [14], instead of targeting a single platform and auditing it for multiple vulnerabilities, a single vulnerability, SQLi, is selected and a tool is developed towards its detection. A case study is presented towards an evaluation of the security achieved by multiple open source CMS.…”

Section: Research Backgroundmentioning

confidence: 99%

Saudi cloud infrastructure: a security analysis

Rajeh

Jin

Zou

2017

Sci. China Inf. Sci.

View full text Add to dashboard Cite

The growing demand and dependence upon cloud services have garnered an increasing level of threat to user data and security. Some of such critical web and cloud platforms have become constant targets for persistent malicious attacks that attempt to breach security protocol and access user data and information in an unauthorized manner. While some of such security compromises may result from insider data and access leaks, a substantial proportion continues to remain attributed to security flaws that may exist within the core web technologies with which such critical infrastructure and services are developed. This paper explores the direct impact and significance of security in the Software Development Life Cycle (SDLC) through a case study that covers some 70 public domain web and cloud platforms within Saudi Arabia. Additionally, the major sources of security vulnerabilities within the target platforms as well as the major factors that drive and influence them are presented and discussed through experimental evaluation. The paper reports some of the core sources of security flaws within such critical infrastructure by implementation with automated security auditing and manual static code analysis. The work also proposes some effective approaches, both automated and manual, through which security can be ensured throughout the SDLC and safeguard user data integrity within the cloud.

show abstract

Comparative analysis of web security in open source content management system

Cited by 16 publications

References 2 publications

Analysis of security CMS platforms by vulnerability scanners

Analysis of security CMS platforms by vulnerability scanners

Security Challenges Behind the Development and Increased Use of Open Source Web Content Management Systems

Saudi cloud infrastructure: a security analysis

Contact Info

Product

Resources

About