CWE-357 - Insufficient UI Warning of Dangerous Operations

CWE ID:

CWE-357

Abstraction:Base
Structure:Simple
Status:Draft

Release Date:2006-07-19
Latest Modification Date:2023-06-29

Weakness Name

Insufficient UI Warning of Dangerous Operations

Description

The user interface provides a warning to a user regarding dangerous or sensitive operations, but the warning is not noticeable enough to warrant attention.

Common Consequences

Scope: Non-Repudiation

Impact: Hide Activities

Related Weaknesses

CWE-693Protection Mechanism Failure

Latest Security News

Latest CVE List

Common Alerts

InformationalInformation Disclosure - Suspicious Comments
HighServer Side Code Injection - ASP Code Injection
MediumDirectory Browsing
HighASP.NET ViewState Integrity
HighHeartbleed OpenSSL Vulnerability (Indicative)
InformationalCross Site Scripting (Persistent) - Prime
InformationalUsername Hash Found in WebSocket message
MediumHidden File Found
InformationalUser Agent Fuzzer
InformationalInformation Disclosure - JWT in Browser sessionStorage