CWE-289—Authentication Bypass by Alternate Name
PUBLISHEDweakness record
released 2006-07-19 · last modified 2025-12-11
Metadata
名称
Authentication Bypass by Alternate Name
描述
The product performs authentication based on the name of a resource being accessed, or the name of the actor performing the access, but it does not properly check all possible names for that resource or actor.