Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

handling-owasp-top-ten-application vulnerabilities

2896899Nov 13 2015 — edited Nov 13 2015

Hi,

This is regarding handling-owasp-top-ten-application vulnerabilities

A10: Unvalidated Redirects and Forwards

Web applications frequently redirect and forward users to other pages and websites, and use untrusteddata to determine the destination pages. Without proper validation, attackers can redirect victims to phishing or malware sites, or use forwards to access unauthorized pages.

I have OAM with external login page configured as ECC. Does OAM provides any way to handle it or I need to handle it with custom Login Page?

Thanks

Locked Post

New comments cannot be posted to this locked post.

Locked on Dec 11 2015

Added on Nov 13 2015

#identity-management, #identity-manager

1 comment

677 views