ASVS Requirement 5.4.2

• Level: 2
• Chapter: V5 File Handling
• Section: V5.4 File Download
• Source: 0x14-V5-File-Handling.md

Description

Verify that file names served (e.g., in HTTP response header fields or email attachments) are encoded or sanitized (e.g., following RFC 6266) to preserve document structure and prevent injection attacks.