{"id":19838,"date":"2026-02-27T12:12:39","date_gmt":"2026-02-27T03:12:39","guid":{"rendered":"https:\/\/sparrow.im\/kr\/?p=19838"},"modified":"2026-03-24T14:02:07","modified_gmt":"2026-03-24T05:02:07","slug":"owasp-api3-bopla-%ec%b7%a8%ec%95%bd%ec%a0%90%ec%9d%b4%eb%9e%80-%ec%86%8d%ec%84%b1-%eb%8b%a8%ec%9c%84-%ea%b6%8c%ed%95%9c-%ea%b2%80%ec%a6%9d%ec%9d%98-%ec%a4%91%ec%9a%94%ec%84%b1","status":"publish","type":"post","link":"https:\/\/sparrow.im\/kr\/2026\/02\/27\/owasp-api3-bopla-%EC%B7%A8%EC%95%BD%EC%A0%90%EC%9D%B4%EB%9E%80-%EC%86%8D%EC%84%B1-%EB%8B%A8%EC%9C%84-%EA%B6%8C%ED%95%9C-%EA%B2%80%EC%A6%9D%EC%9D%98-%EC%A4%91%EC%9A%94%EC%84%B1\/","title":{"rendered":"OWASP API3 BOPLA \ucde8\uc57d\uc810\uc774\ub780? \uc18d\uc131 \ub2e8\uc704 \uad8c\ud55c \uac80\uc99d\uc758 \uc911\uc694\uc131"},"content":[63],"excerpt":{"rendered":"<p>\uc55e\uc11c API2: Broken Authentication\uc5d0\uc11c\ub294 \uc778\uc99d \uc808\ucc28\uac00 \uc801\uc808\ud558\uac8c \uac80\uc99d\ub418\uc9c0 \uc54a\uc744 \ub54c \ubc1c\uc0dd\ud558\ub294 \ubb38\uc81c\ub97c \uc0b4\ud3b4\ubcf4\uc558\uc2b5\ub2c8\ub2e4. (*API2: Broken Authentication \ud655\uc778\ud558\uae30) \uadf8\ub7ec\ub098 \uc0ac\uc6a9\uc790\uc758 \uc2e0\uc6d0\uc774 \uc815\uc0c1\uc801\uc73c\ub85c \ud655\uc778\ub41c \uc774\ud6c4\uc5d0\ub3c4 \ubcf4\uc548 \uc704\ud5d8\uc740 \uc5ec\uc804\ud788 \uc874\uc7ac\ud569\ub2c8\ub2e4. \uc5b4\ub5a4 \ub370\uc774\ud130\uc758 \uc5b4\ub5a4 \uc18d\uc131(Property)\uae4c\uc9c0 \uc811\uadfc\u00b7\uc218\uc815\ud560 \uc218 \uc788\ub294\uc9c0\ub97c \uc81c\ub300\ub85c \uac80\uc99d\ud558\uc9c0 \uc54a\ub294\ub2e4\uba74, \ub610\ub2e4\ub978 \ubcf4\uc548 \uc704\ud611\uc774 \ubc1c\uc0dd\ud560 \uc218 \uc788\uae30 \ub54c\ubb38\uc785\ub2c8\ub2e4. OWASP\ub294 \uc774\ub7ec\ud55c \ubb38\uc81c\ub97c OWASP \uc0c1\uc704 10\ub300 API \ubcf4\uc548 \ucde8\uc57d\uc810 \ubaa9\ub85d\uc5d0\uc11c 3\uc704\ub85c [&hellip;]<\/p>\n","protected":false},"author":11,"featured_media":21594,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","footnotes":""},"categories":[1],"tags":[],"topic":[79],"class_list":["post-19838","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","topic-topic-vulnerability","content-content-secure-article"],"acf":[],"_links":{"self":[{"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/posts\/19838","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/comments?post=19838"}],"version-history":[{"count":13,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/posts\/19838\/revisions"}],"predecessor-version":[{"id":21601,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/posts\/19838\/revisions\/21601"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/media\/21594"}],"wp:attachment":[{"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/media?parent=19838"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/categories?post=19838"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/tags?post=19838"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/topic?post=19838"},{"taxonomy":"content","embeddable":true,"href":"https:\/\/sparrow.im\/kr\/wp-json\/wp\/v2\/content?post=19838"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}