CWE-541

Inclusion of Sensitive Information in an Include File

AI Translation Available

If an include file source is accessible, the file can contain usernames and passwords, as well as sensitive information pertaining to the application and system.

Status

incomplete

Abstraction

variant

Affected Platforms

Technical Details

AI Translation

Common Consequences

confidentiality

Impacts

read application data

Potential Mitigations

Phases:

architecture and design system configuration

Descriptions:

• Do not store sensitive information in include files.

• Protect include files from being exposed.

AI Generated Translation

Common Consequences

riservatezza

Impacts

leggere dati applicazione

Potential Mitigations

Phases:

architettura e design configurazione sistema

Descriptions:

• Non memorizzare informazioni sensibili nei file include.

• Proteggere i file di include da esposizione.

CWE-541

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

Iscriviti alla newsletter