PUT Method Enabled

Febna V M
Published on
01 Oct 2021

The PUT method is typically used to upload data to a server at a URL provided by the user. If this option is enabled, an attacker may be able to inject arbitrary (and potentially malicious) content into the app. This could lead to the compromise of other users (by uploading client-executable scripts), the compromise of the server or other attacks depending on the server’s settings by uploading server-executable code.

Mitigation / Precaution

In order to patch this vulnerability, it is advised to disable the PUT method on the server according to your platform’s documentation.

Automated human-like penetration testing for your web apps & APIs
Teams using Beagle Security are set up in minutes, embrace release-based CI/CD security testing and save up to 65% with timely remediation of vulnerabilities. Sign up for a free account to see what it can do for you.

Written by
Febna V M
Febna V M
Cyber Security Engineer
Find website security issues in a flash
Improve your website's security posture with proactive vulnerability detection.
Free website security assessment