Register
Login
Toggle navigation
more
SaaS Solutions
Vulnerability Intelligence
Vulnerability Management
Pricing
Vulnerabilities
Reports
Blog
Contact Us
Main
Vulnerability Database
CWE List
CWE-1385 - Missing Origin Validation in WebSockets
Description
The product uses a WebSocket, but it does not properly verify that the source of data or communication is valid.
Latest vulnerabilities for CWE-1385
Missing WebSocket origin validation in Next.js
2025-05-29
Low
Yes
Multiple vulnerabilities in Jenkins and Jenkins LTS
2024-01-25
High
Yes
Public exploit
Missing WebSocket origin validation in webpack-dev-server
2018-09-21
Medium
Yes
References
Description of CWE-1385 on Mitre website