CWE-529
Exposure of Access Control List Files to an Unauthorized Control Sphere
The product stores access control list files in a directory or other container that is accessible to actors outside of the intended control sphere.
Official CWE-529 definition at MITREImpactr finds and proves weaknesses like CWE-529 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist