From SQL and XSS injections, 3rd party vulnerabilities, file upload issues to password policy we ran a comprehensive penetration test and found a range of vulnerabilities for this client’s portal. With 15 “Priority 1” and a number of other vulnerabilities our team did a great job making a detailed examination and report.
“Priority 1” vulnerabilities are the ones that can cause the most damage to your application. These are ones which allow the user to extract information including PII (Personal Identifiable Information) data or to damage/exploit your application and database e.g. in using your server to send spam.
It’s not unusual to find a long range of issues on systems which have never been pen-tested before. We always recommend doing a comprehensive pentest and security audit at least once a year to ensure your applications are secure.