CWE-608 - Struts: Non-private Field in ActionForm Class
- Abstraction:Variant
- Structure:Simple
- Status:Draft
- Release Date:2007-05-07
- Latest Modification Date:2023-06-29
Weakness Name
Struts: Non-private Field in ActionForm Class
Description
An ActionForm class contains a field that has not been declared private, which can be accessed without using a setter or getter.
Common Consequences
Scope: Integrity, Confidentiality
Impact: Modify Application Data, Read Application Data
