CWE-349
Acceptance of Extraneous Untrusted Data With Trusted Data
The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.
Official CWE-349 definition at MITREImpactr finds and proves weaknesses like CWE-349 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist