CWE-470
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
The product uses external input with reflection to select which classes or code to use, but it does not sufficiently prevent the input from selecting improper classes or code.
Official CWE-470 definition at MITREImpactr finds and proves weaknesses like CWE-470 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist