ASVS Requirement 1.5.1

• Level: 1
• Chapter: V1 Encoding and Sanitization
• Section: V1.5 Safe Deserialization
• Source: 0x10-V1-Encoding-and-Sanitization.md

Description

Verify that the application configures XML parsers to use a restrictive configuration and that unsafe features such as resolving external entities are disabled to prevent XML eXternal Entity (XXE) attacks.