Common Vulnerabilities and Exposures Assessment of Private Higher Educational Institutions Using Web Application Security

Abstract

The advancements in technology has led to advancements in threats and vulnerabilities as well. Academic websites are not spared from this. This study aims to evaluate the common vulnerabilities and exposures of private higher educational institution’s website using Open Web Application Security Project. Seven private higher education institutions were evaluated using Open Web Application Security Project Zed Attack Proxy and Open Web Application Security Project top 10. The top vulnerabilities the higher educational institutions were exposed to were broken access control, insecure design and software and data integrity failures. There were two higher educational institutions with high level of risks. Also, a total of thirty-two risks or vulnerabilities were identified in the study. The identification of vulnerabilities or exposures in websites will help the private schools to become aware of possible cyberattacks to their institution’s website. This will help the institution to identify and prevent further loss or damage.