Skip to content

Commit

Permalink
Update 8.2.1.yaml
Browse files Browse the repository at this point in the history 
Signed-off-by: AmirHossein Raeisi <[email protected]>
  • Loading branch information
@Ahsraeisi
Ahsraeisi authored Sep 1, 2024
1 parent 19592b1 commit 8d4374c
Showing 1 changed file with 2 additions and 47 deletions.
49 changes: 2 additions & 47 deletions templates/8.2.1.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ id: ASVS-4-0-3-V8-2-1
info:
name: ASVS 8.2.1 Check
author: AmirHossein Raeisi
severity: low
severity: info
classification:
cwe-id: CWE-525
reference:
Expand All @@ -16,46 +16,7 @@ info:
http:
- method: GET
path:
- "{{BaseURL}}{{sensitive_path}}"
payloads:
sensitive_path:
- "/"
- "/login"
- "/logout"
- "/register"
- "/dashboard"
- "/profile"
- "/settings"
- "/account"
- "/admin"
- "/user"
- "/users"
- "/search"
- "/messages"
- "/notifications"
- "/help"
- "/support"
- "/contact"
- "/about"
- "/privacy"
- "/terms"
- "/docs"
- "/api"
- "/api/v1"
- "/api/v2"
- "/home"
- "/welcome"
- "/password-reset"
- "/forgot-password"
- "/update-profile"
- "/billing"
- "/invoices"
- "/orders"
- "/cart"
- "/checkout"
- "/confirmation"
- "/history"
- "/activities"
- "{{BaseURL}}"

matchers-condition: and
stop-at-first-match: true
Expand All @@ -65,9 +26,3 @@ http:
regex:
- '(?i)cache-control:.*no-store'
negative: true

- type: status
status:
- 200
- 301
- 302

0 comments on commit 8d4374c

Please sign in to comment.