Below is the list of some common security tasks to be implemented on each login panel/module development:
- SSL installation
- Encryption of data
- Access of Website admin panel on only difined IP’s
- SQL Injection Prevention
- Broken Authentication and Session
- Prevention of Cross Site Scripting (XSS)
- Insecure Direct Object Reference
- Avoid Security Misconfiguration
- Sensitive Data Exposure
- Missing Function Level Access Control
- Cross Site Request Forgery
- Using Known Vulnerable Components
- Un-validated Redirects and Forwards