Skip to content

Frontend Tests

Index

  Access Control

  •    Broken Object Level Authorization

  Configuration

  •    Compromised Supply Chain

  •    Crashing Page

  •    Development Build

  •    Domain Takeover

  •    Excessive Browser Permissions

  •    Request URL Override

  •    Missing Subresource Integrity

  •    Unsafe Function Use

  •    XSS via Domain Takeover

  Information Disclosure

  •    Console Error

  •    Exposed Source Map

  •    Frontend Guessable Cookie Value

  •    Password Field Autocompletion

  •    Frontend Vulnerable Package

  •    Sensitive Comments

  •    Frontend Software Component Leak

  •    Frontend Stacktrace

  Injection

  •    ASP.NET ViewState Encryption Disabled

  •    ASP.NET ViewState MAC Disabled

  •    Frontend Command Injection

  •    Frontend CRLF Injection

  •    HTML Injection

  •    Frontend HTTP Parameter Pollution

  •    Frontend XSS Injection

  •    NoSQL Injection via Frontend

  •    Reflected URL Parameter

  •    SQL Injection via Frontend

  Protocol

  •    Content Security Policy Header

  •    Frontend Cookie Security

  •    Frontend X-Content-Type-Options

  •    Server Error via Frontend

  •    Frontend SSL enforced

  •    SSL Certificate

  Request Forgery

  •    GET based CSRF

  •    POST based CSRF

  •    Open redirection Forgery via Frontend

  •    SSRF Injection in headers via Frontend

  Resource Limitation

  •    Security timeout