CWE-288
Authentication Bypass Using an Alternate Path or Channel
The product requires authentication, but the product has an alternate path or channel that does not require authentication.
Official CWE-288 definition at MITREImpactr finds and proves weaknesses like CWE-288 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist