CAPEC Related Weakness
Cross Site Request Forgery
CWE-306Missing Authentication for Critical Function
CWE-352Cross-Site Request Forgery (CSRF)
CWE-664Improper Control of a Resource Through its Lifetime
CWE-716OWASP Top Ten 2007 Category A5 - Cross Site Request Forgery (CSRF)
CWE-732Incorrect Permission Assignment for Critical Resource
Cross Site Identification
CWE-352Cross-Site Request Forgery (CSRF)
CWE-359Exposure of Private Personal Information to an Unauthorized Actor
JSON Hijacking (aka JavaScript Hijacking)
CWE-345Insufficient Verification of Data Authenticity
CWE-346Origin Validation Error
CWE-352Cross-Site Request Forgery (CSRF)
Cross-Domain Search Timing
CWE-208Observable Timing Discrepancy
CWE-352Cross-Site Request Forgery (CSRF)
CWE-385Covert Timing Channel
Back to Top