V12.3 — File Execution
File Execution: 6 L3 requirement(s). V12.3.1: Verify that user-submitted filename metadata is not used directly by system or framework filesystems and that a URL API ... V12.3.2: Verify that user-submitted filename metadata is validated or ignored to prevent the disclosure, creation, updating or re... V12.3.3: Verify that user-submitted filename metadata is validated or ignored to prevent the disclosure or execution of remote fi... ... and 3 more.
| Property | Value |
|---|---|
| Section | V12.3 |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-HARD-02 | Input Validation and Injection Prevention |
Source: OWASP Application Security Verification Standard 4.0.3