XML External Entitites (XXE)
OWASP A3 - Sensitive Data Exposure
This module covers sensitive data and how to protect it.
Insufficient Logging and Monitoring
It is imperative that server administrators maintain robust logs of activity on their servers. This module covers the risks associated with improper monitoring.
Broken Access Control
This module defines and explains broken access control, which allows attackers to access unauthorized functionality and/or data.