TLS/SSL certificate expired in less than 60 days

Description

During the scan, Kayran managed to find that one of the TLS / SSL certificates used by your server will expire in less than 60 days. TLS / SSL certificates facilitate the encryption of data being transferred.
When the certificate expires, a web browsers will display a security warning to end-users. This warning will be asking them to manually verify the credibility of the certificate on your server.

If the certificate expires, it issues a warning to the user, indicating: “This site is not secure”, or, that “Your connection is not private”, this may lead to users avoiding from accessing or using your site.
Also, an attacker could exploit this vulnerability to carry out Man-In-The-Middle attacks because the traffic was not encrypted.

Recommendation

Renew or Replace your SSL/TLS certificate by contacting the company that provides certification for your server and ask them to renew as soon as possible.

References

https://cwe.mitre.org/data/definitions/295.html

< Return to all Vulnerabilities

Browser Exploitation

We know that it’s possible to exploit weaknesses (or vulnerabilities) that exist in anything, from a certain code to the entire application, let’s talk about

Read More »

SQLI to RCE

How to preform SQLI TO RCE? One of the most interesting and important things about any site is the database. So, it’s important to protect

Read More »

Using VPN

What is a VPN? Why should someone be using VPN? Which Problems does is solve? and what is the advantages and disadvantages of it? Let’s

Read More »

The Dark Web

Let’s talk about the darker and more mysterious side of the internet, also known as The Dark Web. You’ve probably heard about it, whether it’s

Read More »