CWE-531 - Inclusion of Sensitive Information in Test Code

CWE-531

Abstraction:
Variant

Structure:
Simple

Status:
Incomplete

Weakness Name: Inclusion of Sensitive Information in Test Code

Description: Accessible test applications can pose a variety of security risks. Since developers or administrators rarely consider that someone besides themselves would even know about the existence of these applications, it is common for them to contain sensitive information or functions.

Common Consequences: Scope: Confidentiality
Impact: Read Application Data

Related Weaknesses: CWE-540Inclusion of Sensitive Information in Source Code

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Free security scan for your website

Don't show website scan report rating on the leaderboard