10 Points to Secure Your ASP.NET Core MVC Applications

1. Broken authentication and session management 2. Sensitive Data Exposure & Audit trail 3. Cross-Site Scripting (XSS) attacks 4. Malicious File Upload 5. Security Misconfiguration (Error Handling Must Setup Custom Error Page) 6. Version Discloser 7. Cross-Site Request Forgery (CSRF) 8. XML External Entities (XXE) 9. Insecure Deserialization 10. SQL Injection Attack