View Attack Vector

General Information

Unvalidated Forward

Variants:
Direct Persistent Multiphase Session

Vector Type:
Attack

Relevance:
Generic

Layer:
Application-Level

Platforms:
Any

Target Type:
Web Application

Affected Mechanisms:
Input Validation, Secure Design

Invented In:
01/01/2010

Added In:
10/12/2014

Quick Introduction to the Topic:

Direct Variant:

Unvalidated Forward

Variant Title:
Unvalidated Forward

Typical Severity:
Minor

Resources:

WASC

White Papers:

Learn More:

Persistent Variant:

Stored Unvalidated Forward

Also Known As:
Persistent Unvalidated Forward

Typical Severity:
Medium

Resources:

White Papers:

Learn More:

Multiphase Variant:

Multiphase Unvalidated Forward

Variant Title:
Multiphase Unvalidated Forward

Typical Severity:
Minor

Resources:

White Papers:

Learn More:

Session Variant:

Unvalidated Forward via Session Puzzling

Variant Title:
Unvalidated Forward via Session Puzzling

Typical Severity:
Minor

Resources:

White Papers:

Learn More: