CWE-8
J2EE Misconfiguration: Entity Bean Declared Remote
When an application exposes a remote interface for an entity bean, it might also expose methods that get or set the bean's data. These methods could be leveraged to read sensitive information, or to change data in ways that violate the application's expectations, potentially leading to other vulnerabilities.
Official CWE-8 definition at MITREImpactr finds and proves weaknesses like CWE-8 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist