Insecure Direct Object Reference Prevention - OWASP Cheat Sheet Series - discu.eu

Reddit

Should you pass primary keys for the database objects to the HTML? If yes, how to pass it? https://cheatsheetseries.owasp.org/cheatsheets/Insecure_Direct_Object_Reference_Prevention_Cheat_Sheet.html 9 comments 8/5/2022 webdev

Linking pages

Goodbye sequential integers, hello UUIDv7! https://buildkite.com/blog/goodbye-integers-hello-uuids 418 comments
Plan B for UUIDs: double AES-128 - Paul Khuong: some Lisp https://pvk.ca/Blog/2022/07/11/plan-b-for-uuids-double-aes-128/ 64 comments
Web Application Security Checklist – AppSec Monkey https://www.appsecmonkey.com/blog/web-application-security-checklist/ 11 comments
UUIDs are so much better than autoincrementing ids and it's not even close – Aaron Decker, Software Dude – hacking the gibson for fun and profit. https://www.ard.ninja/blog/2023-02-26-uuids-over-autoincrementing-ids-are-so-much-better-its-not-even-close/ 4 comments
What is BOLA? (Broken Object Level Authorization) | Traceable App & API Security https://www.traceable.ai/blog-post/a-deep-dive-on-the-most-critical-api-vulnerability-bola-broken-object-level-authorization 0 comments
ProjectSend - Stored XSS to Account Takeover https://nv1t.github.io/blog/projectsend-stored-xss-to-account-takeover/ 0 comments

Would you like to stay up to date with Web Development? Checkout Web Development Weekly.

Related searches:

Search whole site: site:cheatsheetseries.owasp.org

Search title: Insecure Direct Object Reference Prevention - OWASP Cheat Sheet Series

See how to search.

Submit link to: