CWE-345 - CERT CVE

CWE-345 - Insufficient Verification of Data Authenticity

The software does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

CAPEC ID Naziv
CAPEC-111 JSON Hijacking (aka JavaScript Hijacking)
CAPEC-141 Cache Poisoning
CAPEC-142 DNS Cache Poisoning
CAPEC-148 Content Spoofing
CAPEC-218 Spoofing of UDDI/ebXML Messages
CAPEC-384 Application API Message Manipulation via Man-in-the-Middle
CAPEC-385 Transaction or Event Tampering via Application API Manipulation
CAPEC-386 Application API Navigation Remapping
CAPEC-387 Navigation Remapping To Propagate Malicious Content
CAPEC-388 Application API Button Hijacking