CAPEC Related Weakness
Choosing Message Identifier
CWE-201Exposure of Sensitive Information Through Sent Data
CWE-306Missing Authentication for Critical Function
Force the System to Reset Values
CWE-306Missing Authentication for Critical Function
Using Unpublished APIs
CWE-306Missing Authentication for Critical Function
CWE-693Protection Mechanism Failure
CWE-695Use of Low-Level Functionality
Cross Site Request Forgery
CWE-306Missing Authentication for Critical Function
CWE-352Cross-Site Request Forgery (CSRF)
CWE-664Improper Control of a Resource Through its Lifetime
CWE-716OWASP Top Ten 2007 Category A5 - Cross Site Request Forgery (CSRF)
CWE-732Incorrect Permission Assignment for Critical Resource
Back to Top