← All Status Codes
405
Method Not Allowed
⚠️ Client Error Medium Risk

📖 What Is HTTP 405?

The HTTP method used is not allowed for the requested resource. The server must include an Allow header listing the permitted methods.

🛡️ Security Implications

Ensure dangerous methods (PUT, DELETE, TRACE, CONNECT) are disabled on production servers unless explicitly needed.

🔍 Common Causes

Sending POST to a GET-only endpoint, using DELETE on a read-only resource, or misconfigured server/routing.

🔧 How to Fix

Use the correct HTTP method. Check the Allow response header for permitted methods. Review server configuration.

🖥️ How to Check

curl -I -o /dev/null -w "%{http_code}" https://example.com

🔗 Related Client Error Codes

400
Bad Request
401
Unauthorized
403
Forbidden
404
Not Found
406
Not Acceptable
407
Proxy Auth Required
408
Request Timeout
409
Conflict
📚 Learn Web Security — Free Course