CWE-642
External Control of Critical State Data
The product stores security-critical state information about its users, or the product itself, in a location that is accessible to unauthorized actors.
Official CWE-642 definition at MITREImpactr finds and proves weaknesses like CWE-642 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist