Detections
Analytics

Serialized Data Detected

info Web App Scanning Plugin ID 114224

Language:

Synopsis

Serialized Data Detected

Description

Serialization is the process of converting an object to a stream of bytes, in order to store or send it through the network. By opposition, deserialization is the process of reconstructing an object from this stream of bytes.

Web applications often use serialized data transmitted from the client which, depending on how it is implemented, can be abused by a malicious actor to conduct his attacks on the target application.

See Also

https://cheatsheetseries.owasp.org/cheatsheets/Deserialization_Cheat_Sheet.html

Plugin Details

Severity: Info

ID: 114224

Type: remote

Published: 3/6/2024

Updated: 3/25/2024

Scan Template: api, basic, full, pci, scan