V12.5 — File Download
File Download: 2 L3 requirement(s). V12.5.1: Verify that the web tier is configured to serve only files with specific file extensions to prevent unintentional inform... V12.5.2: Verify that direct requests to uploaded files will never be executed as HTML/JavaScript content.
| Property | Value |
|---|---|
| Section | V12.5 |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-HARD-07 | Resource Upload Constraints |
Source: OWASP Application Security Verification Standard 4.0.3