Security Misconfigurations

Security misconfigurations occur when systems or applications are not securely configured. This can include default settings, error messages that reveal sensitive information, or the presence of unnecessary services, among other things.

# Vulnerable code (exposing sensitive information through error messages)
try:
    # Code that may throw an exception
except Exception as e:
    print("An error occurred: " + str(e))

# Secure code (proper error handling)
try:
    # Code that may throw an exception
except Exception as e:
    logError("An error occurred: " + str(e))

PreviousBroken Access Control NextCross-Site Scripting (XSS)

Last updated 2 years ago