CWE-6
J2EE Misconfiguration: Insufficient Session-ID Length
The J2EE application is configured to use an insufficient session ID length.
Official CWE-6 definition at MITREImpactr finds and proves weaknesses like CWE-6 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist