This is an example of a Project or Chapter Page.
The Web Parameter Tampering attack is based on the manipulation of parameters exchanged between client and server in order to modify application data, such as user credentials and permissions, price and quantity of products, etc. Usually, this information is stored in cookies, hidden form fields, or URL Query Strings, and is used to increase application functionality and control.
This attack can be performed by a malicious user who wants to exploit the application for their own benefit, or an attacker who wishes to attack a third-person using a Man-in-the-middle attack. In both cases, tools likes Webscarab and Paros proxy are mostly used.
The attack success depends on integrity and logic validation mechanism errors, and its exploitation can result in other consequences including XSS, SQL Injection, file inclusion, and path disclosure attacks.
For a short video clip describing the vulnerability, click here [Courtesy of Checkmarx]
Examples
Example 1
The parameter modification of form fields can be considered a typical example of Web Parameter Tampering attack.
For example, consider a user who can select form field values [combo box, check box, etc.] on an application page. When these values are submitted by the user, they could be acquired and arbitrarily manipulated by an attacker.
Example 2
When a web application uses hidden fields to store status information, a malicious user can tamper with the values stored on their browser and change the referred information. For example, an e-commerce shopping site uses hidden fields to refer to its items, as follows:
In this example, an attacker can modify the “value” information of a specific item, thus lowering its cost.
Example 3
An attacker can tamper with URL parameters directly. For example, consider a web application that permits a user to select their profile from a combo box and debit the account:
//www.attackbank.com/default.asp?profile=741&debit=1000
In this case, an attacker could tamper with the URL, using other values for profile and debit:
//www.attackbank.com/default.asp?profile=852&debit=2000
Other parameters can be changed including attribute parameters. In the following example, it’s possible to tamper with the status variable and delete a page from the server:
//www.attackbank.com/savepage.asp?nr=147&status=read
Modifying the status variable to delete the page:
//www.attackbank.com/savepage.asp?nr=147&status=del
- :Category:Client-side Attacks
- :Category:Logical Attacks
- SQL Injection
- XSS Attacks
- Path Traversal
- :Category: Input Validation Vulnerability
- :Category: Input Validation
References
Category:OWASP ASDR Project Category: Injection Category: Attack
Cloudflare is a global network designed to make everything you connect to the Internet secure, private, fast, and reliable.
- Secure your websites, APIs, and Internet applications.
- Protect corporate networks, employees, and devices.
- Write and deploy code that runs on the network edge.
Learn MoreGet Started Free
Talk to an ExpertLearn More
Latest insights and trends about the DDoS threat landscape - as observed across the global Cloudflare network.
Read ReportTurn fear into opportunity — 3 strategic steps to cloud transformation during economic uncertainty.
Register NowCreate Gateway policies directly from CASB security findings to go from finding SaaS application issues to fixing them in minutes.
Learn MoreToday organizations are facing economic uncertainty, shrinking budgets and lack of clarity on how to move their business forward.
Cloudflare helps you regain control in this environment in three ways.
Gain better control over spending and lower your TCO
Eliminate hardware lead times and price uncertainty
Navigate a changing business landscape with greater flexibility
Secure and accelerate your apps, APIs, and websites in minutes by pointing your DNS to Cloudflare. Instantly turn on performance and security services.
Learn MoreCDN
DNS
DDoS protection
Bot Management
Load Balancing
Rate Limiting
WAF
API Protection
Stop data loss, malware and phishing with the most performant Zero Trust application access and Internet browsing solution.
Learn MoreZero Trust Network Access with Private Routing
Remote Browser Isolation
Secure Web Gateway with CASB
Zero Trust Integrations
Networking services to help enterprises connect, secure, and accelerate their corporate networks — without the cost and complexity of managing legacy network hardware.
Learn MoreWAN as a Service
Firewall as a Service
L3 & L4 DDoS Protection
Network Interconnect
Smart Routing
Deploy serverless code instantly across the globe to give it exceptional performance, reliability, and scale.
Learn MoreWorkers
Workers KV
Pages
Durable Objects
Video Streaming
The public Internet is becoming the new corporate network, and that shift calls for a radical reimagining of network security and connectivity. Learn how Cloudflare One makes it easy and intuitive to connect users, build branch office on-ramps, and delegate application access — often in a matter of minutes.
Learn MoreAnswer a Few Easy Questions
Cloudflare for Infrastructure
Your website, APIs, and applications are your key channels for doing business with your customers and suppliers. As more and more shift online, ensuring these resources are secure, performant and reliable is a business imperative.
Cloudflare for Infrastructure is a complete solution to enable this for anything connected to the Internet.
Firewall, DDoS protection, rate limiting, bot management, VPN, and more.
Learn moreIntelligent routing, mobile & image optimization, video, cache.
Learn moreLoad balancing, DNS, virtual backbone.
Learn moreZERO TRUST SERVICES
Yesterday’s static access controls – and the closed networks they relied upon for trust and verification – are no match for today’s open enterprise. Cloudflare replaces legacy security perimeters with our global network, making getting work done on the Internet faster and safer for teams.
Zero Trust access for all your applications [cloud, on-premise, or SaaS] without a VPN.
Secure and inspect corporate Internet traffic, without sacrificing performance.
Learn moreCloudflare Browser Isolation is a browser isolation solution that runs in the cloud away from your networks and endpoints.
Learn moreCloudflare Workers
The traditional model of building cloud applications requires you to set up containers and deploy to zones. Should your application or website surge in popularity, you have to manage the scaling process.
Cloudflare Workers changes that. You write the code, and we handle the rest. With serverless functions, storage at the edge, and instant static sites, you can build your applications directly onto our network.
Learn moreNo servers to maintain
JavaScript, Rust, C, C++
Automatic scaling
Learn how HubSpot worked hand-in-hand with Cloudflare to rapidly secure and accelerate thousands of customer domains.
Read moreCloudflare helped LendingTree save over $250,000 in just 5 months and reduced Bot attacks by over 70%
Learn moreFindLaw, a Thomson Reuters business, uses Cloudflare to secure and accelerate thousands of customer sites.
Read more