International Journal of Computer Science and Mobile Computing (IJCSMC)
Today website security is the most important feature of securing an organization and should be given higher priority. Day-by-day hackers are mainly targeting on informative websites and web-based applications like forms, sensitive area like login pages, shopping carts, dynamic pages etc. Insecure web applications causes uploading backdoors on the server which allows access to databases, website hosted servers and also allow hackers to perform illegal activities using the host server like email spamming, proxy. A victim's website can be used for criminal activities, while illegally using website's bandwidth and making its owner liable for these unlawful acts. While developing the websites, many times developers/site owners forget to remove sensitive data from website which is not supposed to be exposed to public users. Such data consists of untested vulnerable forms, database backup and site backup in compressed format.