#1 category on the OWASP Top 10
Source: owasp.org
Published:
<p>Maintaining its position at #1 in the Top Ten, 100% of the applications tested were found to have some form of broken access control. Notable CWEs included are CWE-200: Exposure of Sensitive Information to an Unauthorized Actor , CWE-201: Exposure of Sensitive Information Through Sent Data , CWE-