Tag: CWE

CWE-200

CWE-200 An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.

CWE-264

CWE-264 Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.