Website defacement is an attack on a website that changes the visual

appearance of the site or a webpage. These are typically the work of system
crackers, who break into a web server and replace the hosted website with
one of their own.

SQL (pronounced "ess-que-el") stands for Structured Query

Language. SQL is used to communicate with a database. According to ANSI
(American National Standards Institute), it is the standard language for
relational database management systems.

DDoS is a type of DOS attack where multiple compromised systems, which

are often infected with a Trojan, are used to target a single system causing a
Denial of Service (DoS) attack.

In computer security, a vulnerability is a weakness which allows an attacker

to reduce a system's information assurance. Vulnerability is the intersection
of three elements: a system susceptibility or flaw, attacker access to the flaw,
and attacker capability to exploit the flaw.

Cross-site scripting (XSS) is a type of computer security vulnerability

typically found in web applications. XSS enables attackers to inject client-side
scripts into web pages viewed by other users. A cross-site
scripting vulnerability may be used by attackers to bypass access controls
such as the same-origin policy.

Full Path Disclosure (FPD) vulnerabilities enable the attacker to see the path to the
webroot/file. e.g.: /home/omg/htdocs/file/. Certain vulnerabilities, such as using the
load_file() (within a SQL Injection) query to view the page source, require the attacker to
have the full path to the file they wish to view.

Account hijacking is a process through which an individual's email account,

computer account or any other account associated with a computing device
or service is stolen or hijacked by a hacker.

A zero day vulnerability refers to a hole in software that is unknown to the

vendor. This security hole is then exploited by hackers before the vendor
becomes aware and hurries to fix itthis exploit is called a zero dayattack