Abstract: The purposes of this study were to design and find
users’ satisfaction after using the decision support system for tourism
northern part of Thailand, which can provide tourists touristic
information and plan their personal voyage. Such information can be
retrieved systematically based on personal budget and provinces. The
samples of this study were five experts and users 30 persons white
collars in Bangkok. This decision support system was designed via
ASP.NET. Its database was developed by using MySQL, for
administrators are able to effectively manage the database. The
application outcome revealed that the innovation works properly as
sought in objectives. Specialists and white collars in Bangkok have
evaluated the decision support system; the result was satisfactorily
positive.
Abstract: Today’s technology is heavily dependent on web applications. Web applications are being accepted by users at a very rapid pace. These have made our work efficient. These include webmail, online retail sale, online gaming, wikis, departure and arrival of trains and flights and list is very long. These are developed in different languages like PHP, Python, C#, ASP.NET and many more by using scripts such as HTML and JavaScript. Attackers develop tools and techniques to exploit web applications and legitimate websites. This has led to rise of web application security; which can be broadly classified into Declarative Security and Program Security. The most common attacks on the applications are by SQL Injection and XSS which give access to unauthorized users who totally damage or destroy the system. This paper presents a detailed literature description and analysis on Web Application Security, examples of attacks and steps to mitigate the vulnerabilities.