Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Are database requests sanitized? #30

Open
Kr0nox opened this issue Jan 29, 2024 · 0 comments
Open

Are database requests sanitized? #30

Kr0nox opened this issue Jan 29, 2024 · 0 comments
Labels
accepted Uncertainty was manually verified and entered into the archive

Comments

@Kr0nox
Copy link
Collaborator

Kr0nox commented Jan 29, 2024
edited
Loading

Are database requests sanitized?

Description

The uncertainty regarding the sanitization of database requests, which involves ensuring that user inputs are properly validated and cleansed to prevent potential security vulnerabilities such as SQL injection attacks.

Literature Reference

Classifications

Category Option
Location Behavior
Architectural Element Type Behavior
Type Scenario Uncertainty
Manageability Fully Reducible
Resolution Time Realization Time
Reducible by ADD No
Impact on Confidentiality Indirect
Severity of the Impact High

Keywords

Database

Example

Failure to sanitize database requests allowed a malicious user to inject unauthorized SQL code, leading to a data breach and compromising sensitive information.

Related Uncertainties

Parent:

#70

Related Uncertainties:

#40, #46, #52, #57, #49
@Kr0nox Kr0nox added the proposal A proposed uncertainty that was not yet verified and added to the archive label Jan 29, 2024
This was referenced Jan 29, 2024
Open
Open
Open
Open
Open
@sebinside sebinside added accepted Uncertainty was manually verified and entered into the archive and removed proposal A proposed uncertainty that was not yet verified and added to the archive labels Feb 26, 2024
@Kr0nox Kr0nox mentioned this issue Apr 29, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
accepted Uncertainty was manually verified and entered into the archive
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sebinside @Kr0nox