Skip to content

Protocol: Server Error

Identifier: server_error

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner

Description

These errors happen when something goes wrong on the server sidelike a misconfiguration or a bugthat wasnt caught during development. Theyre dangerous because they can reveal hints about how your system is set up or provide attackers with ways to probe for even bigger vulnerabilities. If these errors keep happening, users might lose trust in your platform and attackers could potentially exploit the underlying issues to disrupt service or get access to sensitive data. A common mistake is not handling all possible error scenarios or neglecting proper logging and monitoring, which not only lets these errors slip by unnoticed but also makes it harder to diagnose and fix the real problem.

Configuration

Example

Example configuration:

---
security_tests:
  server_error:
    assets_allowed:
    - REST
    - GRAPHQL
    - WEBAPP
    skip: false

Reference

assets_allowed

Type : List[AssetType]*

List of assets that this check will cover.

skip

Type : boolean

Skip the test if true.