Skip to content

Commit 8d4374c

Browse files
AhsraeisiAhsraeisi
authored
Update 8.2.1.yaml
Signed-off-by: AmirHossein Raeisi <[email protected]>
1 parent 19592b1 commit 8d4374c

File tree

1 file changed

+2
-47
lines changed

1 file changed

+2
-47
lines changed

templates/8.2.1.yaml

Lines changed: 2 additions & 47 deletions
Original file line numberDiff line numberDiff line change
@@ -3,7 +3,7 @@ id: ASVS-4-0-3-V8-2-1
33
info:
44
name: ASVS 8.2.1 Check
55
author: AmirHossein Raeisi
6-
severity: low
6+
severity: info
77
classification:
88
cwe-id: CWE-525
99
reference:
@@ -16,46 +16,7 @@ info:
1616
http:
1717
- method: GET
1818
path:
19-
- "{{BaseURL}}{{sensitive_path}}"
20-
payloads:
21-
sensitive_path:
22-
- "/"
23-
- "/login"
24-
- "/logout"
25-
- "/register"
26-
- "/dashboard"
27-
- "/profile"
28-
- "/settings"
29-
- "/account"
30-
- "/admin"
31-
- "/user"
32-
- "/users"
33-
- "/search"
34-
- "/messages"
35-
- "/notifications"
36-
- "/help"
37-
- "/support"
38-
- "/contact"
39-
- "/about"
40-
- "/privacy"
41-
- "/terms"
42-
- "/docs"
43-
- "/api"
44-
- "/api/v1"
45-
- "/api/v2"
46-
- "/home"
47-
- "/welcome"
48-
- "/password-reset"
49-
- "/forgot-password"
50-
- "/update-profile"
51-
- "/billing"
52-
- "/invoices"
53-
- "/orders"
54-
- "/cart"
55-
- "/checkout"
56-
- "/confirmation"
57-
- "/history"
58-
- "/activities"
19+
- "{{BaseURL}}"
5920

6021
matchers-condition: and
6122
stop-at-first-match: true
@@ -65,9 +26,3 @@ http:
6526
regex:
6627
- '(?i)cache-control:.*no-store'
6728
negative: true
68-
69-
- type: status
70-
status:
71-
- 200
72-
- 301
73-
- 302

0 commit comments

Comments
 (0)