The latest OWASP "Top 10 API Security Risks" report once again lists "Broken Object Level Authorization" as its top 1 vulnerability. The top two items remain broken access-control-related risks: Broken Object Level authorization, and Broken Authentication. Broken access control continues to be a significant concern.
Table of contents
IntroductionBroken-Access-Control Remains the Number 1 ConcernWhat can you do about it?Best Practices for Avoiding Broken Access ControlKeep evolving!Sort: