ASVS Requirement 1.5.3

• Level: 3
• Chapter: V1 Encoding and Sanitization
• Section: V1.5 Safe Deserialization
• Source: 0x10-V1-Encoding-and-Sanitization.md

Description

Verify that different parsers used in the application for the same data type (e.g., JSON parsers, XML parsers, URL parsers), perform parsing in a consistent way and use the same character encoding mechanism to avoid issues such as JSON Interoperability vulnerabilities or different URI or file parsing behavior being exploited in Remote File Inclusion (RFI) or Server-side Request Forgery (SSRF) attacks.