Matches in DBpedia 2016-04 for { <http://dbpedia.org/resource/Mass_assignment_vulnerability> ?p ?o }
Showing triples 1 to 37 of
37
with 100 triples per page.
- Mass_assignment_vulnerability abstract "Mass assignment is a computer vulnerability where an active record pattern in a web application is abused to modify data items that the user should not normally be allowed to access such as password, granted permissions, or administrator status.Many web application frameworks offer an active record and object-relational mapping features, where external data in serialization formats is automatically converted on input into internal objects and, in turn, into database record fields. If the framework's interface for that conversion is too permissive and application designer doesn't mark specific fields as immutable, it's possible to overwrite fields that were never intended to be modified from outside (e.g. admin permissions flag).These vulnerabilities were found in applications written in Ruby on Rails, ASP.NET MVC, Java Play framework, LaravelIn 2012 mass assignment on Ruby on Rails allowed bypassing of mapping restrictions and resulted in proof of concept injection of unauthorized SSH public keys into user accounts at GitHub. Further vulnerabilities in Ruby on Rails allowed creation of internal objects through a specially crafted JSON structure.".
- Mass_assignment_vulnerability wikiPageID "36682527".
- Mass_assignment_vulnerability wikiPageLength "3221".
- Mass_assignment_vulnerability wikiPageOutDegree "18".
- Mass_assignment_vulnerability wikiPageRevisionID "701895921".
- Mass_assignment_vulnerability wikiPageWikiLink ASP.NET_MVC.
- Mass_assignment_vulnerability wikiPageWikiLink Active_record_pattern.
- Mass_assignment_vulnerability wikiPageWikiLink Category:Web_security_exploits.
- Mass_assignment_vulnerability wikiPageWikiLink GitHub.
- Mass_assignment_vulnerability wikiPageWikiLink JSON.
- Mass_assignment_vulnerability wikiPageWikiLink Java_(software_platform).
- Mass_assignment_vulnerability wikiPageWikiLink Laravel.
- Mass_assignment_vulnerability wikiPageWikiLink Object-relational_mapping.
- Mass_assignment_vulnerability wikiPageWikiLink Object_(computer_science).
- Mass_assignment_vulnerability wikiPageWikiLink Play_Framework.
- Mass_assignment_vulnerability wikiPageWikiLink Proof_of_concept.
- Mass_assignment_vulnerability wikiPageWikiLink Ruby_on_Rails.
- Mass_assignment_vulnerability wikiPageWikiLink Secure_Shell.
- Mass_assignment_vulnerability wikiPageWikiLink Serialization.
- Mass_assignment_vulnerability wikiPageWikiLink Vulnerability_(computing).
- Mass_assignment_vulnerability wikiPageWikiLink Web_application.
- Mass_assignment_vulnerability wikiPageWikiLink Web_framework.
- Mass_assignment_vulnerability wikiPageWikiLinkText "Mass assignment vulnerability".
- Mass_assignment_vulnerability wikiPageWikiLinkText "mass assignment vulnerability".
- Mass_assignment_vulnerability wikiPageUsesTemplate Template:Orphan.
- Mass_assignment_vulnerability wikiPageUsesTemplate Template:Reflist.
- Mass_assignment_vulnerability subject Category:Web_security_exploits.
- Mass_assignment_vulnerability hypernym Vulnerability.
- Mass_assignment_vulnerability type Software.
- Mass_assignment_vulnerability type Exploit.
- Mass_assignment_vulnerability comment "Mass assignment is a computer vulnerability where an active record pattern in a web application is abused to modify data items that the user should not normally be allowed to access such as password, granted permissions, or administrator status.Many web application frameworks offer an active record and object-relational mapping features, where external data in serialization formats is automatically converted on input into internal objects and, in turn, into database record fields.".
- Mass_assignment_vulnerability label "Mass assignment vulnerability".
- Mass_assignment_vulnerability sameAs Q6784017.
- Mass_assignment_vulnerability sameAs m.0kvd5rv.
- Mass_assignment_vulnerability sameAs Q6784017.
- Mass_assignment_vulnerability wasDerivedFrom Mass_assignment_vulnerability?oldid=701895921.
- Mass_assignment_vulnerability isPrimaryTopicOf Mass_assignment_vulnerability.