CWE-1230
Exposure of Sensitive Information Through Metadata
The product prevents direct access to a resource containing sensitive information, but it does not sufficiently limit access to metadata that is derived from the original, sensitive information.
Official CWE-1230 definition at MITREImpactr finds and proves weaknesses like CWE-1230 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist