-
Notifications
You must be signed in to change notification settings - Fork 0
/
package.json
27 lines (27 loc) · 1.32 KB
/
package.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
{
"name": "cybersecproject",
"version": "1.0.0",
"description": "## Implemented Vulnerabilities ### 1. Security Misconfiguration - GET /api/users returns all user data including passwords and other sensitive information ### 2. Insecure Design - Attempting to login with correct username but wrong password reveals the correct password ### 3. Cryptographic Failures - Password are stored as plain text in ./backend/src/users.json ### 4. Broken Access Control - CORS is misconfigured to allow API access from any address ### 5. Insufficient Logging & Monitoring - No logging or monitoring is present in backend",
"main": "index.js",
"scripts": {
"start-frontend": "cd ./frontend && npm run dev",
"start-backend": "cd ./backend && npm run dev",
"start": "npm-run-all -p start-frontend start-backend",
"install-frontend": "cd ./frontend && npm install",
"install-backend": "cd ./backend && npm install",
"install": "npm-run-all -p install-frontend install-backend"
},
"repository": {
"type": "git",
"url": "git+https://github.com/Melimet/cybersecproject.git"
},
"author": "",
"license": "ISC",
"bugs": {
"url": "https://github.com/Melimet/cybersecproject/issues"
},
"homepage": "https://github.com/Melimet/cybersecproject#readme",
"devDependencies": {
"npm-run-all": "^4.1.5"
}
}