This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Cornucopia - Ecommerce Website - C 9
From OWASP
Suit: Cornucopia
Card/Value: 9
Description:
Michael can bypass the application to gain access to data because administrative tools or administrative interfaces are not secured adequately.
Technical Note:
NB: The key concept for this card is protection of administrative web interfaces such as Content Management System (CMS), database and server web control panels.
References:
| OWASP SCP | OWASP ASVS | OWASP AppSensor | CAPEC | SAFECODE |
|---|---|---|---|---|
| 23 | 2.1 | - | 122 | - |
| 29 | 4.1 | 225 | ||
| 56 | 4.10 | |||
| 81 | ||||
| 82 | ||||
| 84 | ||||
| 85 | ||||
| 86 | ||||
| 87 | ||||
| 88 | ||||
| 89 | ||||
| 90 |
