Issue No. 04 - July/August (2009 vol. 7)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2009.104
Michael Meike , Trusted Bytes
Johannes Sametinger , Johannes Kepler University, Lintz, Austria
Andreas Wiesauer , Johannes Kepler University, Lintz, Austria
Typically, users of Web content management systems lack expert knowledge of the technology itself, let alone the security issues therein. Complicating the matter, WCMS vulnerabilities are attractive targets for potential attackers. A security analysis of two popular, open-source WCMSs exposed significant security holes, despite the obvious efforts of their developer communities. These vulnerabilities leave the applications and their nonexpert users open to exploitation.
Internet application, security, electronic commerce, open source software
M. Meike, J. Sametinger and A. Wiesauer, "Security in Open Source Web Content Management Systems," in IEEE Security & Privacy, vol. 7, no. , pp. 44-51, 2009.