"The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor." - Entry from the Common Weakness Enumeration
For more info visit CWE-284
The Vulnerability History Project