Identifying weak validation of data from external components to prevent attacks such as cross-site request forgery and path tampering