One of the leading e-Wallet service providers performs Vulnerability assessments for the production environment

Industry

Fin Tech

Services

Security Testing

Client Overview

The client is Abu Dhabi based one of the leading e-Wallet management service providers.

Problem Statement

  • To ensure the security of the production environment before deployment.
  • To ensure the security and integrity of the backend server.
  • Identifying vulnerable system software and patching any vulnerable unpatched system.

Tech Stack

Solution Approach

  1. Upon manual and automated analysis of the target, we found out that there are multiple vulnerabilities present on the payment gateway service, Merchant management system as well a few third party vendors.
  2. Properly detailed reports were given along with the recommendation. 
  3. Few other things to consider :
    a. Perform proper VAPT assessment before deployment of new services.
    b. Secure coding guidelines have to be followed.

Benefits

Upon manual and automated analysis of the target, we managed to find 3 critical, 3 high, and 1 medium severity issue.

Our team has given a recommendation along with the proof of concepts of the vulnerabilities.

The backend server was vulnerable to a Remote Code Execution(RCE) vulnerability. An attacker can use this vulnerability to get full access to the back-end server and can compromise the whole server.

CSRF and XSS bugs can be used together to take over the admin panel or admin account.

Connect with Us

Highlights

Potential web security vulnerabilities in the application were identified.
The e-Wallet management system was built to manage e-Wallets, online payments and support e-commerce businesses.

Latest Case Studies

Ceaseless business flow for a Saudi-based SIM card company

Compatibility Testing

Ecommerce

World’s Only Cloud Based Credit Software Trusts Us!

Infrastructure Testing

Fintech

Functionality Testing to integrate different modules

Functional Testing

Airlines

View More

Get In Touch
With Us

We're all ears and eager to discuss your testing needs!

Crafting the best testing strategy for your product starts here.

+91-9160492537

natasha@frugaltesting.com

Company
About UsCareersLife at Frugal Contact UsOur Founders
Product
FrugalTestFeaturesIntegrationsPricing
Industries
AirlinesHealth careE-CommerceBankingFintechMedia
LogisticsEdtechManufacturingHospitalityTravelSport and Fitness
Checklists
Services

Digital Assurance

Mobile TestingIoT TestingBlock Chain TestingMetaverse TestingAI/ML TestingETL TestingWeb 3 TestingVoice TestingAR/VR TestingOTT TestingWearable Testing

Quality Engineering

Functional TestingAutomation TestingRegression TestingPerformance TestingAPI TestingCompatibility TestingSecurity TestingOTT Platform - Load testingInfrastructure Testing

Enterprise Application Assurance

D365 TestingMSD 365 Data Migration TestingMSD365 Automated TestingMSD 365 Performance TestingMSD 365 DevopsMSD 365 Integration TestingMSD 365 Regression TestingMSD 365 Network/Infrastructure testingMSD 365 User Acceptance TestingService Now Testing

Test Management Services

Agile TestingDevOps Testing and Continuous
Frugal Testing logo

Your Partner in Performance

LinkedInWhatsappYoutube
Frugal Testing Techreviewer Badge
Company
Frugal Testing Capterra Badge

Get In Touch :

info@frugaltesting.com

Join the Team :

©2024 All Rights Reserved. Frugal Product Services LLP
Privacy PolicyTerms and Conditions