CWE-206
Observable Internal Behavioral Discrepancy
The product performs multiple behaviors that are combined to produce a single result, but the individual behaviors are observable separately in a way that allows attackers to reveal internal state or internal decision points.
Official CWE-206 definition at MITREImpactr finds and proves weaknesses like CWE-206 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist