[Owasp-appsensor-project] Additional Detection Points - Additional or Missing Parameters

Colin Watson colin.watson at owasp.org
Wed Jun 9 10:20:58 EDT 2010


Suggestion to add a new detection point.  Has this already been ruled
out?  Should it be added?  Is the description/categorization suitable?

Source
-----------------------------------
Just another idea, but based on WAF white listing concepts

Description
-----------------------------------
A required header or body parameter is missing, or additional
unexpected parameters are received with the request.

Suggested categorization
-----------------------------------
RE5 Additional or Missing Parameters


More information about the Owasp-appsensor-project mailing list