Information Disclosure: Crashing Page¶

Identifier: crashing_page

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

Pages crashing due to unhandled JavaScript errors can make applications unstable and potentially open the door for more serious risks like data corruption or denial of service, potentially allowing attackers to exploit unpredictable system states.

How we test: We analyze browser console output and page behavior to detect if unhandled JavaScript errors cause pages to crash. We check if applications properly handle error scenarios and verify if error handling prevents crashes that could lead to denial of service or exploitation.

References:

https://owasp.org/www-project-web-security-testing-guide/v42/4-Web_Application_Security_Testing/03-Identity_Management_Testing/02-Testing_for_Bypassing_Authentication_Schema

Configuration¶

Example¶

Example configuration:

---
security_tests:
  crashing_page:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.