CWE-1270
Generation of Incorrect Security Tokens
The product implements a Security Token mechanism to differentiate what actions are allowed or disallowed when a transaction originates from an entity. However, the Security Tokens generated in the system are incorrect.
Official CWE-1270 definition at MITREImpactr finds and proves weaknesses like CWE-1270 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist