R-002 - Web application compromise leading to data exposure

Description

Exploitation of application vulnerability allowing unauthorized access to business data.

Linked Scenario

S-002 - Web Application Exploitation Leading to Database Access

Affected Asset(s)

A-064 - Dolibarr
A-065 - Database
A-094 - Business Data

Risk Evaluation

Likelihood

Possible
Public exposure + no WAF

Impact

Critical
Sensitive business data

Risk Level

Critical

Risk Treatment Decision

Mitigate

Justification

High impact + realistic exposure

Associated Controls

Hardening
Updates
Future WAF

Residual Risk

High (until controls improve)

Monitoring & Review

Application logs
Suspicious queries

Status

Open

Description​

Linked Scenario​

Affected Asset(s)​

Risk Evaluation​

Likelihood​

Impact​

Risk Level​

Risk Treatment Decision​

Justification​

Associated Controls​

Residual Risk​

Monitoring & Review​

Status​

Description

Linked Scenario

Affected Asset(s)

Risk Evaluation

Likelihood

Impact

Risk Level

Risk Treatment Decision

Justification

Associated Controls

Residual Risk

Monitoring & Review

Status