This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Cornucopia - Ecommerce Website - CR J"
From OWASP
(Created page with "{{DISPLAYTITLE:<span style="padding:2px 5px 0px 5px;color:white;background:#a395ca;">Cornucopia - Ecommerce Website - CR J</span>}} File:Cornucopia_-_Ecommerce_Website_CR_J....") |
|||
Line 52: | Line 52: | ||
</tr> | </tr> | ||
</table> | </table> | ||
− | |||
− | |||
Latest revision as of 16:28, 21 January 2016
Suit: Cryptography
Card/Value: J
Description:
Justin can read credentials for accessing internal or external resources, services and others systems because they are stored in an unencrypted format, or saved in the source code.
Technical Note:
NB: The key concept for this card is unencrypted storage of account credentials.
References:
OWASP SCP | OWASP ASVS | OWASP AppSensor | CAPEC | SAFECODE |
---|---|---|---|---|
35 | - | - | 116 | 21 |
90 | 29 | |||
171 | ||||
172 |