// Level 4 · Control detail
API1:2023CriticalOWASP API · Top 10 (2023)
Broken Object Level Authorization
APIs tend to expose endpoints that handle object identifiers, creating a wide attack surface for object-level access control issues.
Get AI-powered control detail
Plain-English explanation, CLI checks, portal steps, remediation, automation snippets, and cross-framework mappings.
3/3 free lookups remaining today
Related controls in other frameworks
finding related controls…