CWE-766
Critical Data Element Declared Public
The product declares a critical variable, field, or member to be public when intended security policy requires it to be private.
Official CWE-766 definition at MITREImpactr finds and proves weaknesses like CWE-766 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist