DerScanner
Home / Vulnerability Database / Config files : Unsafe handlers policy
Config files

Config files : Unsafe handlers policy

Classification

OWASP Top 10 2013
A5-Security Misconfiguration
OWASP Top 10 2017
A6-Security Misconfiguration
OWASP Top 10 2021
A5-Security Misconfiguration
OWASP ASVS
Access ControlAccess ControlAccess ControlAccess Control
HIPAA
§164.312 (a)(1)
CWE
CWE-284CWE-287CWE-1031
CWE/SANS Top 25 2021
CWE-287

Overview

The application uses unsafe security policy for event handlers.

References

  1. Handlers
  2. CWE-284
  3. CWE CATEGORY: OWASP Top Ten 2017 Category A5 - Broken Access Control
MEDIUM

DerScanner Severity Score

Do you want to fix Config files : Unsafe handlers policy in your application?

See also

Config files

Config files : Text4Shell Vulnerability

Config files

Config files : Incorrect directory deletion

Config files

Config files : Code injection