Pattern
Least Privilege File Permissions
least-privilege-file-permissions
Webserver-exposed file write access and overly broad privileges let an attacker tamper with server content or plugin-uploaded files; enforcing least-privilege write permissions confines modifications to expected paths and prevents replacement of executable/web assets.