Skip to content

Protocol: Server Error

Identifier: frontend_server_error

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

Server errors can reveal hints about system setup or provide attackers with ways to probe for vulnerabilities, potentially allowing them to exploit underlying issues to disrupt service or access sensitive data.

How we test: We monitor API responses for server error status codes and analyze error messages to detect if sensitive information about system configuration, stack traces, or internal details are exposed that could aid attackers.

Configuration

Example

Example configuration:

---
security_tests:
  frontend_server_error:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.