{"id":113436,"date":"2026-04-13T15:42:45","date_gmt":"2026-04-13T14:42:45","guid":{"rendered":"https:\/\/www.metacompliance.com\/non-classe\/why-broken-access-control-is-the-1-owasp-risk-and-still-ignored"},"modified":"2026-04-13T15:43:30","modified_gmt":"2026-04-13T14:43:30","slug":"pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore","status":"publish","type":"post","link":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore","title":{"rendered":"Pourquoi un contr\u00f4le d&rsquo;acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l&rsquo;OWASP, et toujours ignor\u00e9 ?"},"content":{"rendered":"","protected":false},"excerpt":{"rendered":"","protected":false},"author":15,"featured_media":113427,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"","inline_featured_image":false,"footnotes":""},"categories":[208,174],"class_list":["post-113436","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-gouvernance-risques-conformite-grc","category-cyber-security-awareness"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.2 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Pourquoi un contr\u00f4le d&#039;acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l&#039;OWASP, et toujours ignor\u00e9 ? - MetaCompliance<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore\" \/>\n<meta property=\"og:locale\" content=\"fr_FR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Pourquoi un contr\u00f4le d&#039;acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l&#039;OWASP, et toujours ignor\u00e9 ? - MetaCompliance\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore\" \/>\n<meta property=\"og:site_name\" content=\"MetaCompliance\" \/>\n<meta property=\"article:published_time\" content=\"2026-04-13T14:42:45+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-13T14:43:30+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"620\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Aimee Jepson\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Aimee Jepson\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore\"},\"author\":{\"name\":\"Aimee Jepson\",\"@id\":\"https:\/\/www.metacompliance.com\/fr#\/schema\/person\/1698292fafc9a14f5e480007722873a7\"},\"headline\":\"Pourquoi un contr\u00f4le d&rsquo;acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l&rsquo;OWASP, et toujours ignor\u00e9 ?\",\"datePublished\":\"2026-04-13T14:42:45+00:00\",\"dateModified\":\"2026-04-13T14:43:30+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore\"},\"wordCount\":19,\"image\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png\",\"articleSection\":[\"Gouvernance, risque, conformit\u00e9 GRC\",\"Sensibilisation \u00e0 la cybers\u00e9curit\u00e9\"],\"inLanguage\":\"fr-FR\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore\",\"url\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore\",\"name\":\"Pourquoi un contr\u00f4le d'acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l'OWASP, et toujours ignor\u00e9 ? - MetaCompliance\",\"isPartOf\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png\",\"datePublished\":\"2026-04-13T14:42:45+00:00\",\"dateModified\":\"2026-04-13T14:43:30+00:00\",\"author\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr#\/schema\/person\/1698292fafc9a14f5e480007722873a7\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#breadcrumb\"},\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage\",\"url\":\"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png\",\"contentUrl\":\"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png\",\"width\":1200,\"height\":620},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.metacompliance.com\/fr\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Pourquoi un contr\u00f4le d&#8217;acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l&#8217;OWASP, et toujours ignor\u00e9 ?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.metacompliance.com\/fr#website\",\"url\":\"https:\/\/www.metacompliance.com\/fr\",\"name\":\"MetaCompliance\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.metacompliance.com\/fr?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"fr-FR\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.metacompliance.com\/fr#\/schema\/person\/1698292fafc9a14f5e480007722873a7\",\"name\":\"Aimee Jepson\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/4512e203a57c458ce2abb05d1c1f87078fe6a00c128353789f92d5efda793406?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/4512e203a57c458ce2abb05d1c1f87078fe6a00c128353789f92d5efda793406?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/4512e203a57c458ce2abb05d1c1f87078fe6a00c128353789f92d5efda793406?s=96&d=mm&r=g\",\"caption\":\"Aimee Jepson\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Pourquoi un contr\u00f4le d'acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l'OWASP, et toujours ignor\u00e9 ? - MetaCompliance","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore","og_locale":"fr_FR","og_type":"article","og_title":"Pourquoi un contr\u00f4le d'acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l'OWASP, et toujours ignor\u00e9 ? - MetaCompliance","og_url":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore","og_site_name":"MetaCompliance","article_published_time":"2026-04-13T14:42:45+00:00","article_modified_time":"2026-04-13T14:43:30+00:00","og_image":[{"width":1200,"height":620,"url":"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png","type":"image\/png"}],"author":"Aimee Jepson","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Aimee Jepson"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#article","isPartOf":{"@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore"},"author":{"name":"Aimee Jepson","@id":"https:\/\/www.metacompliance.com\/fr#\/schema\/person\/1698292fafc9a14f5e480007722873a7"},"headline":"Pourquoi un contr\u00f4le d&rsquo;acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l&rsquo;OWASP, et toujours ignor\u00e9 ?","datePublished":"2026-04-13T14:42:45+00:00","dateModified":"2026-04-13T14:43:30+00:00","mainEntityOfPage":{"@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore"},"wordCount":19,"image":{"@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage"},"thumbnailUrl":"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png","articleSection":["Gouvernance, risque, conformit\u00e9 GRC","Sensibilisation \u00e0 la cybers\u00e9curit\u00e9"],"inLanguage":"fr-FR"},{"@type":"WebPage","@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore","url":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore","name":"Pourquoi un contr\u00f4le d'acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l'OWASP, et toujours ignor\u00e9 ? - MetaCompliance","isPartOf":{"@id":"https:\/\/www.metacompliance.com\/fr#website"},"primaryImageOfPage":{"@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage"},"image":{"@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage"},"thumbnailUrl":"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png","datePublished":"2026-04-13T14:42:45+00:00","dateModified":"2026-04-13T14:43:30+00:00","author":{"@id":"https:\/\/www.metacompliance.com\/fr#\/schema\/person\/1698292fafc9a14f5e480007722873a7"},"breadcrumb":{"@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#breadcrumb"},"inLanguage":"fr-FR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore"]}]},{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#primaryimage","url":"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png","contentUrl":"https:\/\/www.metacompliance.com\/wp-content\/uploads\/2026\/04\/B_-Why-Broken-Access-Control-Is-the-1-OWASP-Risk-and-Still-Ignored.png","width":1200,"height":620},{"@type":"BreadcrumbList","@id":"https:\/\/www.metacompliance.com\/fr\/blog\/cyber-security-awareness\/pourquoi-un-controle-dacces-defaillant-est-le-risque-n-1-de-lowasp-et-toujours-ignore#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.metacompliance.com\/fr"},{"@type":"ListItem","position":2,"name":"Pourquoi un contr\u00f4le d&#8217;acc\u00e8s d\u00e9faillant est le risque n\u00b0 1 de l&#8217;OWASP, et toujours ignor\u00e9 ?"}]},{"@type":"WebSite","@id":"https:\/\/www.metacompliance.com\/fr#website","url":"https:\/\/www.metacompliance.com\/fr","name":"MetaCompliance","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.metacompliance.com\/fr?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"fr-FR"},{"@type":"Person","@id":"https:\/\/www.metacompliance.com\/fr#\/schema\/person\/1698292fafc9a14f5e480007722873a7","name":"Aimee Jepson","image":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/secure.gravatar.com\/avatar\/4512e203a57c458ce2abb05d1c1f87078fe6a00c128353789f92d5efda793406?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/4512e203a57c458ce2abb05d1c1f87078fe6a00c128353789f92d5efda793406?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/4512e203a57c458ce2abb05d1c1f87078fe6a00c128353789f92d5efda793406?s=96&d=mm&r=g","caption":"Aimee Jepson"}}]}},"_links":{"self":[{"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/posts\/113436","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/comments?post=113436"}],"version-history":[{"count":0,"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/posts\/113436\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/media\/113427"}],"wp:attachment":[{"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/media?parent=113436"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.metacompliance.com\/fr\/wp-json\/wp\/v2\/categories?post=113436"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}