Urgent requirement of PHP Developer for a ongoing project

Closed Posted 3 years ago Paid on delivery
Closed Paid on delivery

Below are the points, we are looking for :

1. Code Review portal

2. Access Control Origin Not Set

Access-Control-Allow-Origin is set by server in every CORS response. Depending on its value, the browser

decides if the response is allowed or not. It can be set to * (also called the wildcard character) which is

not a recommended practice and could result in attacks.

3. Failure to Restrict URL Access

Failure to restrict URL access occurs in applications hide functionality from non-privileged users. In an

application that fails to restrict URL access, administration links are only put onto the page if the user is

an administrator. However, if non-privileged users discover the administration page’s address, they can

still access it via URL access.

In our case access to a js file (page) that only a super admin should have access to is allowed for normal

users. This indicates that the access control settings are not properly applied in the application and would

allow normal users to have access to privileged pages.

4. Incomplete Cache Control

Cache control need to be set to no-cache, no-store, must-revalidate through out the portal.

5. portal login - able to login with old URL.

6. Need to fix Cross Site Scripting in portal

7. Cookie Does Not Contain Secure and HTTP Only Attribute in portal

P.S. Candidate need to work for 5-8 hrs daily(Based on requirement)

PHP JavaScript CSS jQuery HTML

Project ID: #26510570

About the project

5 proposals Remote project Active 3 years ago

5 freelancers are bidding on average $451 for this job

joomd

Hello, i will agree to work daily 5-8hrs. I am expert in design and development both. I will do all work according to your requirement. I have developed many websites with dashboard and admin panel. I will do this one More

$500 USD in 7 days
(126 Reviews)
6.2
matiasdesousa

Hello. I'm Rui. What system/framework are you using? Does it have role based access control? Is it wordpress website? Can we chat for more detaisl? I'm a web dev with 4 years of experience and i'm interested in th More

$400 USD in 10 days
(8 Reviews)
2.7