Dashboard
Weaknesses

CVE InsightSecurity Vulnerabilities and Weaknesses

Dashboard Weaknesses

CWE-425

Direct Request ('Forced Browsing')

Description

The web application does not adequately enforce appropriate authorization on all restricted URLs, scripts, or files.

Diagram

Source: MITRE CWE™ — CWE-425

External Reference

cwe.mitre.org › CWE-425

Related CVEs

Browse CVEs whose root cause is classified as CWE-425.

View CVEs for CWE-425 →

This product uses the NVD API but is not endorsed or certified by the NVD.
Data sourced from NVD / NIST, FIRST.org (EPSS), and MITRE CWE™.