CWE-923
Improper Restriction of Communication Channel to Intended Endpoints
The product establishes a communication channel to (or from) an endpoint for privileged or protected operations, but it does not properly ensure that it is communicating with the correct endpoint.
Official CWE-923 definition at MITREImpactr finds and proves weaknesses like CWE-923 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist