Insecure Coding Examples

 Below are examples of insecure code practices that expose applications to vulnerabilities. Each example highlights the issue and its consequences.

1. SQL Injection

Issue: Dynamic queries with unsanitized user input allow attackers to manipulate SQL statements.

Insecure Example (Python):

import sqlite3

def get_user(username):
    conn = sqlite3.connect("example.db")
    cursor = conn.cursor()
    query = f"SELECT * FROM users WHERE username = '{username}'"  # Bad practice!
    cursor.execute(query)
    return cursor.fetchone()

user_input = "'; DROP TABLE users; --"  # Malicious input
print(get_user(user_input))
  • Why insecure: The input is directly concatenated into the SQL query, allowing SQL injection (e.g., deleting tables or accessing unauthorized data).

2. Hardcoded Credentials

Issue: Hardcoding secrets like passwords exposes them if the code is leaked.

Insecure Example (Java):

public class DatabaseConfig {
    public static void main(String[] args) {
        String dbUsername = "admin";
        String dbPassword = "password123"; // Hardcoded credential
        System.out.println("Connecting to database...");
    }
}
  • Why insecure: Anyone with access to the code can view the credentials. If shared publicly, secrets are compromised.

3. Cross-Site Scripting (XSS)

Issue: Rendering unsanitized user input in a browser enables XSS attacks.

Insecure Example (HTML/JavaScript):

<!DOCTYPE html>
<html>
<body>
    <h1>Welcome!</h1>
    <script>
        let userInput = prompt("Enter your name:");
        document.write("Hello, " + userInput); // Bad practice: unsanitized input
    </script>
</body>
</html>

Attack: An attacker inputs:

<script>alert('XSS Attack!');</script>
  • Why insecure: The malicious script executes in the browser, leading to data theft, session hijacking, etc.

4. Improper Password Storage

Issue: Storing passwords in plain text is a severe security risk.

Insecure Example (Python):

users = {"admin": "password123"}  # Password stored in plain text

def authenticate(username, password):
    if users.get(username) == password:
        print("Login successful!")
    else:
        print("Invalid credentials")

authenticate("admin", "password123")
  • Why insecure: If attackers access the database, they can immediately read users' passwords.

5. Improper File Permissions

Issue: Incorrect file permissions can expose sensitive data to unauthorized users.

Insecure Example (Linux Bash):

# Create a file with world-readable permissions
touch secret.txt
chmod 777 secret.txt  # Bad practice: Read/write/execute permissions for everyone
  • Why insecure: Any user can view, edit, or delete the sensitive file.

6. Unencrypted Communication

Issue: Transmitting sensitive data over HTTP exposes it to interception.

Insecure Example (Python Requests):

import requests

url = "http://example.com/login"  # Insecure HTTP
data = {"username": "user", "password": "pass123"}
response = requests.post(url, data=data)
print("Response:", response.text)
  • Why insecure: Data sent over HTTP is not encrypted, allowing attackers to sniff passwords or other sensitive data.

7. Unrestricted File Uploads

Issue: Allowing any file type upload can lead to remote code execution.

Insecure Example (PHP):

<?php
if (isset($_FILES['file'])) {
    move_uploaded_file($_FILES['file']['tmp_name'], "uploads/" . $_FILES['file']['name']); // No checks!
    echo "File uploaded successfully!";
}
?>
  • Why insecure: An attacker can upload a malicious .php script, execute it, and take control of the server.

8. Using Weak Random Numbers for Security

Issue: Using weak random number generators compromises security tokens.

Insecure Example (Python):

import random

def generate_token():
    return str(random.randint(100000, 999999))  # Predictable!

print("Token:", generate_token())
  • Why insecure: Random tokens generated this way are predictable, enabling attackers to brute-force tokens.

9. Lack of Input Validation

Issue: Accepting any input allows unexpected behaviors or crashes.

Insecure Example (Python):

def process_input(age):
    print(f"You are {int(age)} years old.")  # No input validation

user_input = "abc"  # Invalid input
process_input(user_input)
  • Why insecure: Invalid input like "abc" can cause exceptions or unexpected program behavior.

10. Disabled Security Features

Issue: Developers sometimes disable security features for convenience.

Insecure Example (JavaScript - CORS):

app.use((req, res, next) => {
    res.setHeader("Access-Control-Allow-Origin", "*");  // Allow all origins
    next();
});
  • Why insecure: This allows requests from any origin, increasing the risk of malicious requests.

Summary of Insecure Practices

  1. SQL Injection - Using unsanitized inputs in queries.
  2. Hardcoded Credentials - Embedding secrets in code.
  3. XSS - Rendering unsanitized user input.
  4. Plain Text Passwords - Storing passwords insecurely.
  5. Improper File Permissions - Overly broad file access.
  6. Unencrypted Communication - Transmitting sensitive data via HTTP.
  7. Unrestricted File Uploads - Allowing all file types without validation.
  8. Weak Random Numbers - Predictable security tokens.
  9. Lack of Input Validation - Accepting all user inputs.
  10. Disabled Security Features - Removing critical protections.

By recognizing and addressing these examples of insecure code, developers can significantly reduce vulnerabilities in their applications.

Comments

Post a Comment

Popular posts from this blog

LiteSun Digital Timer Manual

Image
https://www.amazon.com/FosPower-Electrical-Outlets-Programmable-Capacity/dp/B07958YD8R/ref=asc_df_B07958YD8R/?tag=hyprod-20&linkCode=df0&hvadid=692875362841&hvpos=&hvnetw=g&hvrand=14083707952334820094&hvpone=&hvptwo=&hvqmt=&hvdev=c&hvdvcmdl=&hvlocint=&hvlocphy=9026289&hvtargid=pla-2281435177898&mcid=916b8c9e65b539f5aa0e7cda5d70922b&hvocijid=14083707952334820094-B07958YD8R-&hvexpln=73&th=1 Set up:      Clock Mode:               Hold SET for 2 seconds till                - On the Lower Left in the screen frame SET starts flashing.                -  On the Top of the the Day - MO, TU, WE, TH, FR, SA, SU starts flashing.  Set the Current Day by pressing buttons : [PROG/+] for moving forward, [-] for moving backward.               - ...
Read more

Digital Advertising

Promote Business through Google Ads.  Options: A. Create a Google Business Profile, and forward customers to the business profile, provided by Google. B. Forward customers to Hosted Domain website  - Specific Webpages, for up-to-date contents, and offers, available within the website. 
Read more

Creating coloring pages from photo

Creating coloring pages from photo images is a fun and creative project! On Ubuntu Linux, you can use several tools and software to achieve this. Here’s a step-by-step guide: --- 1. Using GIMP GIMP (GNU Image Manipulation Program) is a powerful and free tool for editing images. Steps: 1. Install GIMP: sudo apt update sudo apt install gimp 2. Open Your Photo in GIMP: Launch GIMP and open the photo you want to convert. 3. Convert to Grayscale: Go to Image > Mode > Grayscale. 4. Adjust Brightness and Contrast: Go to Colors > Brightness-Contrast to adjust the image for a better outline. 5. Apply Edge Detection: Go to Filters > Edge-Detect > Difference of Gaussians. Adjust the parameters to highlight the edges. 6. Optional: Invert Colors: Go to Colors > Invert if you want black outlines on a white background. 7. Save Your Coloring Page: Export the file as a PDF or PNG for printing. --- 2. Using Inkscape Inkscape is another powerful tool, especially for vector graphics, and...
Read more