If your API supports write operations, you’ll want to make sure your API only accepts properties that are expected by your API code.
Because if someone can inject additional properties into a write request, that aren’t expected by your API or other components that your API is connected to, this can have unintended consequences that hackers can try to exploit.
Learn best practices to avoid Mass Assignment vulnerabilities in your API code…
