Test Number of Times a Function Can Be Used Limits
OWASP Web Security Testing Guide 4.2 > 10. Business logic Testing > 10.5. Test Number of Times a Function Can Be Used Limits
ID | Link to Hackinglife | Link to OWASP | Description |
---|---|---|---|
10.5 | WSTG-BUSL-05 | Test Number of Times a Function Can Be Used Limits | - Identify functions that must set limits to the times they can be called. - Assess if there is a logical limit set on the functions and if it is properly validated. - For each of the functions and features found that should only be executed a single time or specified number of times during the business logic workflow, develop abuse/misuse cases that may allow a user to execute more than the allowable number of times. |