Testing for Mass Assignment
OWASP Web Security Testing Guide 4.2 > 7. Data Validation Testing > 7.20. Testing for Mass Assignment
ID | Link to Hackinglife | Link to OWASP | Description |
---|---|---|---|
7.20 | WSTG-INPV-20 | Testing for Mass Assignment | - Identify requests that modify objects - Assess if it is possible to modify fields never intended to be modified from outside |