ishangsf/rspec - rspec - BuBaQ

ishangsf/rspec

2 lines

303 B

Plaintext

Raw Permalink Normal View History

Modify rule S2115: Update to LaYC format (APPSEC-799) (#2927) ## Review A dedicated reviewer checked the rule description successfully for: - [x] logical errors and incorrect information - [x] information gaps and missing content - [x] text style and tone - [x] PR summary and labels follow [the guidelines](https://github.com/SonarSource/rspec/#to-modify-an-existing-rule)

2023-08-25 14:34:42 +02:00

When a database does not require a password for authentication, it allows anyone to access and manipulate the data stored within it. Exploiting this vulnerability typically involves identifying the target database and establishing a connection to it without the need for any authentication credentials.