To test website security vulnerabilities in [url removed, login to view] This includes but is not limited to: Cross Site Scripting Attacks, SQL Injection Attacks, Site Defacing, Data security compromising.
We require the following:
Test Site for various security vulnerabilities
Create complete document with vulnerabilities and steps to reproduce
Indicate if vulnerabilities represent a hazard to data integrity or privacy
Test may not actually harm site, it's data or it's users
Test may not actually harm web host or other sites on shared server.
Tester may use any programs or tools at users disposal, however they must be freely available to reproduce results or another tool can be used in lieu of to reproduce results.
Testing must be completed within 7 days.
The ideal candidate will have experience and
references regarding security testing. Preferably someone with 5+ years of Internet security experience. Experience in testing osCommerce sites is highly desired.