Metrics
1 Record Views
Conference proceeding
A Hybrid Framework for Systematic Web Vulnerability Assessment and Risk Prioritization
2025 28th International Conference on Computer and Information Technology (ICCIT), pp.4825-4830
International Conference on Computer and Information Technology (ICCIT), 28th (Cox's Bazar, Bangladesh, 12/19/2025–12/21/2025)
12/19/2025
Abstract
The government of Bangladesh dreams of building a digital Bangladesh. Along with this, the government announced the creation of websites for all types of government, private, and educational institutions, and other sectors. websites are increasing And we can do almost all the work from home through the website. Additionally, cybersecurity risks are growing by leaps and bounds. To reduce these risks, public awareness and programmer expertise in cybersecurity are important. The security risks of websites are increasing due to vulnerable coding. If we do not fix these security issues, it could lead to potential data breaches, reputational damage, and financial losses. For example, they are malicious redirects, injected spam content, denial-of-service, website defacements, or even spreading viruses. This proposed system focuses on vulnerability analysis of education websites and government websites in Bangladesh to show the security posture of these sites. In this study, we scanned four types of alerts-high, medium, low, and informational-by Nessus, Acunetix, and ZAP tools. Here, we selected the top three vulnerabilities for targeted websites. These are, respectively, SQL, XSS, and clickjacking. The report represents the security situation of education websites and government websites. Also, which types of vulnerabilities are more common in websites and how to reduce them are discussed.
Related links
Details
- Title
- A Hybrid Framework for Systematic Web Vulnerability Assessment and Risk Prioritization
- Publication Details
- 2025 28th International Conference on Computer and Information Technology (ICCIT), pp.4825-4830
- Resource Type
- Conference proceeding
- Conference
- International Conference on Computer and Information Technology (ICCIT), 28th (Cox's Bazar, Bangladesh, 12/19/2025–12/21/2025)
- Publisher
- IEEE
- Copyright
- © 2025, IEEE
- Identifiers
- 99381798342506600
- Academic Unit
- Center for Cybersecurity and AI; Hal Marcus College of Science and Engineering
- Language
- English