The Silaturahmi UPN Jatim website was developed to support academic services by facilitating course conversion for students involved in independent study and internship programs. However, as a web-based academic system, it faces potential cybersecurity threats such as SQL Injection, Cross-Site Scripting (XSS), and session hijacking—risks that continue to increase globally. This study aims to evaluate the website’s security using the OWASP Top 10 framework to identify vulnerabilities and assess associated risks. A qualitative descriptive method was used, with data collected through manual inspection of the website’s structure and behavior. Vulnerability classification and risk assessment were conducted based on OWASP Risk Rating and CVSS scores. The results identified 15 security issues, including a high-risk vulnerability related to cryptographic data exposure and several misconfigured security headers. The findings emphasize the need for improved security practices in academic systems. Recommendations are provided to enhance the site’s protection, ensuring better compliance with modern security standards and strengthening digital trust within UPN Jatim’s academic environment.
Muhammad et al. (Wed,) studied this question.