CWE-306: Missing Authentication for Critical Function

BaseDraftExploit Likelihood: High

🏆 #21 in CWE Top 25 20241

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.