Detections
Analytics
LDAP Injection Authentication Bypass
Description
Lightweight Directory Access Protocol (LDAP) is used by web applications to access and maintain directory information services. One of the most common uses for LDAP is to provide a Single - Sign - On(SSO) service that will allow clients to authenticate with a web site without any interaction(assuming their credentials have been validated by the SSO provider). LDAP injection occurs when untrusted data is used by the web application to query the LDAP directory without prior sanitisation.
Products, Sensors, and Dependencies
| Product | Dependencies | Data source | Access required | Protocol | Data Collected | Notes |
|---|---|---|---|---|---|---|
| Tenable Web App Scanning | Web Applications | Authenticated Scan | HTTP/HTTPS | LDAP Injection | Plugin ID: 98127 |
References
Attack Path Technique Details
Framework: OWASP
Family: Injection
Technique: LDAP Injection
Sub-Technique: LDAP Injection
Platform: Web Application
Products Required: Tenable Web App Scanning
Tenable Release Date: 2022 Q2