|
CWE-306
|
Missing Authentication for Critical Function
|
|
CWE-352
|
Cross-Site Request Forgery (CSRF)
|
|
CWE-664
|
Improper Control of a Resource Through its Lifetime
|
|
CWE-716
|
OWASP Top Ten 2007 Category A5 - Cross Site Request Forgery (CSRF)
|
|
CWE-732
|
Incorrect Permission Assignment for Critical Resource
|
|
CWE-1275
|
Sensitive Cookie with Improper SameSite Attribute
|