KKeensafeCompliance
← All findings

f-006 — Path traversal in /files/download and /api/v1/export

high · internet-banking + public-api · status open · first seen 2026-04-25

Framework mapping

FrameworkControls / requirements
ISO/IEC 27001:2022
ISMS
 A.8.28
OWASP Top 10 (2021)
Web
 A01:2021
OWASP API Security Top 10 (2023)
API
 API3:2023
MITRE ATT&CK
Adversary TTPs
 T1083

Evidence

Cross-reference: BAS evidence (where applicable).

Mapping JSON: /mapping/f-006