CWE-530

Exposure of Backup File to an Unauthorized Control Sphere

AI Translation Available

A backup file is stored in a directory or archive that is made accessible to unauthorized actors.

Status

incomplete

Abstraction

variant

Affected Platforms

Not Technology-Specific Web Server

Extended Description

AI Translation

Often, older backup files are renamed with an extension such as .~bk to distinguish them from production files. The source code for old files that have been renamed in this manner and left in the webroot can often be retrieved. This renaming may have been performed automatically by the web server, or manually by the administrator.

Technical Details

AI Translation

Common Consequences

confidentiality

Impacts

read application data

Detection Methods

automated static analysis

Potential Mitigations

Phases:

policy

Descriptions:

• Recommendations include implementing a security policy within your organization that prohibits backing up web application source code in the webroot.

AI Generated Translation

Common Consequences

riservatezza

Impacts

leggere dati applicazione

Detection Methods

analisi statica automatizzata

Potential Mitigations

Phases:

politiche

Descriptions:

• Le raccomandazioni includono l'implementazione di una policy di sicurezza all'interno della tua organizzazione che vieti il backup del codice sorgente delle web application nel webroot.

CWE-530

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Iscriviti alla newsletter