F038. Business information leak

Description

It is possible to obtain business information, such as:

  • Username list

  • Strategic information

  • Employees information

  • Clients information

  • Providers information

Rules

  1. R123. Restrict reading of emails

  2. R176. Restrict system objects

  3. R177. Avoid caching and temporary files

  4. R261. Avoid exposing sensitive information

  5. R300. Mask sensitive data

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.

Service status - Terms of Use - Privacy Policy - Cookie Policy