CWE-266
Incorrect Privilege Assignment
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Official CWE-266 definition at MITREImpactr finds and proves weaknesses like CWE-266 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist