Open Web Application Security Project Components with Known Vulnerabilities: A Comprehensive Study

The Open Web Application Security Project (OWASP) is a nonpro t organization battling for improvements in software protection and enhancing the security of web applications. Moreover, its goal is to make application security \accessible so that individuals and organizations can make educated decisions about security threats. The OWASP is a repository of tools and standards for web security studies. OWASP released an annual listing of the top 10 most common vulnerabilities on the web in 2013 and 2017. This research paper proposed a comprehensive study on Components with known vulnerabilities attack, which is the ninth attack (A9) among the top 10 vulnerabilities. Components with known vulnerabilities are the third-party components that the focal system uses as authentication frameworks. Depending on the vulnerability it could range from subtle to seriously bad. This danger arises because the app s modules, like libraries and frameworks, are almost always run with the highest privileges. If a compromised aspect is abused, the hacker s task of causing signi cant loss of information or server takeover is easier.