| Directory Indexing |
|
CWE-276
|
Incorrect Default Permissions
|
|
CWE-285
|
Improper Authorization
|
|
CWE-288
|
Authentication Bypass Using an Alternate Path or Channel
|
|
CWE-424
|
Improper Protection of Alternate Path
|
|
CWE-425
|
Direct Request ('Forced Browsing')
|
|
CWE-693
|
Protection Mechanism Failure
|
|
CWE-732
|
Incorrect Permission Assignment for Critical Resource
|
|
| Detect Unpublicized Web Pages |
|
CWE-425
|
Direct Request ('Forced Browsing')
|
|
| Detect Unpublicized Web Services |
|
CWE-425
|
Direct Request ('Forced Browsing')
|
|
| Key Negotiation of Bluetooth Attack (KNOB) |
|
CWE-285
|
Improper Authorization
|
|
CWE-425
|
Direct Request ('Forced Browsing')
|
|
CWE-693
|
Protection Mechanism Failure
|
|
| Forceful Browsing |
|
CWE-285
|
Improper Authorization
|
|
CWE-425
|
Direct Request ('Forced Browsing')
|
|
CWE-693
|
Protection Mechanism Failure
|
|