CWE-219

Storage of File with Sensitive Data Under Web Root

AI Translation Available

The product stores sensitive data under the web document root with insufficient access control, which might make it accessible to untrusted parties.

Status

draft

Abstraction

variant

Affected Platforms

Web Based Web Server

Extended Description

AI Translation

Besides public-facing web pages and code, products may store sensitive data, code that is not directly invoked, or other files under the web document root of the web server. If the server is not configured or otherwise used to prevent direct access to those files, then attackers may obtain this sensitive data.

Technical Details

AI Translation

Common Consequences

confidentiality

Impacts

read application data

Potential Mitigations

Phases:

implementation system configuration

Descriptions:

• Access control permissions should be set to prevent reading/writing of sensitive files inside/outside of the web directory.

• Avoid storing information under the web root directory.

AI Generated Translation

Common Consequences

riservatezza

Impacts

leggere dati applicazione

Potential Mitigations

Phases:

implementazione configurazione sistema

Descriptions:

• Le autorizzazioni di controllo degli accessi dovrebbero essere configurate per impedire la lettura/scrittura di file sensibili all’interno/all’esterno della directory web.

• Evita di memorizzare le informazioni sotto la directory radice del web.

CWE-219

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

Iscriviti alla newsletter