debian-mirror-gitlab/doc/user/application_security/dast/checks/798.31.md
2022-08-13 15:12:31 +05:30

798 B

stage group info
Secure Dynamic Analysis To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#assignments

Exposure of confidential secret or token Dropbox long lived API token

Description

The response body contains content that matches the pattern of a Dropbox long lived API token. Exposing this value could allow attackers to gain access to all resources granted by this token.

Remediation

Review the response body content and remove any exposed values.

Details

ID Aggregated CWE Type Risk
798.31 false 798 Passive High