Struts: Unused Validation Form

From OWASP

Jump to: navigation, search

This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.


This article includes content generously donated to OWASP by Fortify.JPG.

Abstract

An unused validation form indicates that validation logic is not up-to-date.

Description

It is easy for developers to forget to update validation logic when they remove or rename action form mappings. One indication that validation logic is not being properly maintained is the presence of an unused validation form.

Examples

Related Threats

Related Attacks

Related Vulnerabilities

Related Countermeasures

Category:Input Validation

Categories

Retrieved from "http://www.owasp.org/index.php/Struts:_Unused_Validation_Form"
Personal tools