CWE-285: Improper Authorization

"The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action." - Entry from the Common Weakness Enumeration