unvalidated direct object references
Unvalidated direct object references refer to a vulnerability in which an application fails to properly validate user-provided input, allowing attackers to manipulate or access sensitive information or resources directly.
Requires login.
Related Concepts (1)
Similar Concepts
- abstract objects
- accessing a null object
- dangling pointers
- dereferencing a pointer that points to nothing
- direct recursion
- implicit references
- indirect recursion
- insufficient input validation
- insufficient validation of file inputs
- invalid inferences
- invalid memory reference
- need for validation
- pointer dereferencing
- self-validating arguments
- unvalidated redirects and forwards