SiteShadow
Back to vulnerability library
Detected byCWE-aware static analysisPro

CWE-306 Missing Authentication for Critical Function

Coverage: 23 rules in the SiteShadow rule registry target this CWE (registry v2.0.0). Regex 14Other-pattern 9 Also: Taint and heuristic analyzers may also detect related flows (see coverage for the authoritative list) Registry tagging shows intent, for sample-level behaviour and benchmarked gaps see known gaps.

What this means

SiteShadow flagged a sensitive function/route that appears reachable without a required authentication check.

Why it matters

Unauthenticated access can expose admin or internal operations.

Safer examples

1) Make authentication the default

Use global middleware/guards and explicitly opt routes into "public" rather than "private."

2) Enforce auth at the edge and in handlers

Guard routes with middleware/decorators and ensure handlers assume user exists.

3) Use service identities for internal calls

If it's an internal endpoint, require a trusted service token/mTLS rather than leaving it unauthenticated.

How SiteShadow detects it (high level)

References

---

← Back to Vulnerability Library

Catch this with SiteShadow Pro.

This vulnerability class is detected by SiteShadow's Pro-tier engines, two-pass interprocedural taint analysis, heuristic flow checks, AI-context scanning, and cross-file detection. The free tier catches OWASP Top 10 single-file patterns; Pro adds the data-flow depth that finds this class of bug.