TITLE:
Vulnerability and Accessibility Analysis of Bangladesh Ministry of Land’s Government Websites
AUTHORS:
Noor-E-Sefat Ahmed
KEYWORDS:
SQLi, Bangladeshi Government Websites, Accessibility, Website Vulnerabilities
JOURNAL NAME:
Open Access Library Journal,
Vol.12 No.1,
January
30,
2025
ABSTRACT: Since Bangladesh recently announced the Smart Bangladesh concept, the Government has decided to move its national services online. To that end, they have built websites for each sector, including the Land Ministry, to serve the nation. The initial goal of this step is to ensure that the service is equal and hassle-free in both urban and rural areas of the country. With this modern technological support, almost one hundred percent of the Land Ministry’s office work has shifted to online services. However, with these advancements, some drawbacks, such as security concerns related to data safety risks, accessibility, and vulnerabilities, have emerged, threatening the nation’s billions of sensitive data. Common vulnerabilities found on these sites, such as SQLi and XSS, could expose the nation to significant threats. This paper aims to identify various Common Vulnerabilities and Exposures (CVE), Common Weakness Enumerations (CWE), potential XSS vulnerabilities, and SQLi possibilities on the websites of the Land Ministry. To do so, the study employs penetration testing and scans six types of risk alerts (high, medium, low) on the Land Ministry’s websites using OWASP ZAP and Vega tools. Surprisingly, security concerns were not properly addressed during the development phase of these websites in Bangladesh. Based on the collected data and its analysis, this study concludes with an assessment of the current accessibility issues and vulnerabilities on the Land Ministry’s websites.