CWE-512
Spyware
The product collects personally identifiable information about a human user or the user's activities, but the product accesses this information using other resources besides itself, and it does not require that user's explicit approval or direct input into the product.
Official CWE-512 definition at MITREImpactr finds and proves weaknesses like CWE-512 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist