CWE-202: Exposure of Sensitive Data Through Data Queries
Exposure of Sensitive Data Through Data Queries
Weakness ID: 202 (Weakness Variant)
When trying to keep information confidential, an attacker can often infer some of the information by using statistics.
In situations where data should not be tied to individual users, but a large number of users should be able to make queries that "scrub" the identity of users, it may be possible to get information about a user -- e.g., by specifying search terms that are known to be unique to that user.
Time of Introduction
Architecture and Design
Technical Impact: Read files or
directories; Read application
Sensitive information may possibly be leaked through data queries
Likelihood of Exploit
See the book Translucent Databases for examples.
Phase: Architecture and Design
This is a complex topic. See the book Translucent Databases for a good
discussion of best practices.