CWE-488
Exposure of Data Element to Wrong Session
The product does not sufficiently enforce boundaries between the states of different sessions, causing data to be provided to, or used by, the wrong session.
Official CWE-488 definition at MITREImpactr finds and proves weaknesses like CWE-488 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist