Confeagle: Automated Analysis of Security Configuration Vulnerabilities in Web Applications