CWE Dictionary - CXSecurity.com

English Version
WLB2

CVE WLB2

WLB2
Full List
Bugs
Bogus
Tricks
Exploits
CVE MAP
Full List
Vendors
Products
Tools
CWE Dictionary
Google Hacking
Search
General
CVE
CWE
RSS
Full List
Bugs
Exploits
Dorks
Information
Our services
Add note
About
Submit

To add a note,

use this form

or send email to

submit@cxsecurity.com

When contacting via email, we recommend coded messages.

Get our PGP public key

First page   01 02 03 04 05 06 07 08 09 10 11 12 13 14 15 16 17   Next
   

CWEid
Name
cwe
CWE-89
 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
3223
CWE-79
 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2212
CWE-119
 Improper Restriction of Operations within the Bounds of a Memory Buffer
722
CWE-22
 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
475
CWE-264
 Permissions, Privileges, and Access Controls
283
CWE-94
 Improper Control of Generation of Code ('Code Injection')
282
CWE-20
 Improper Input Validation
281
CWE-352
 Cross-Site Request Forgery (CSRF)
242
CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP File Inclusion')
153
CWE-287
 Improper Authentication
148
CWE-399
 Resource Management Errors
111
CWE-200
 Information Exposure
109
CWE-189
 Numeric Errors
90
CWE-310
 Cryptographic Issues
32
CWE-255
 Credentials Management
30
CWE-59
 Improper Link Resolution Before File Access ('Link Following')
18
CWE-134
 Uncontrolled Format String
18
CWE-16
 Configuration
8
CWE-120
 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
4
CWE-190
 Integer Overflow or Wraparound
2
CWE-122
 Heap-based Buffer Overflow
1
CWE-284
 Improper Access Control
1
CWE-400
 Uncontrolled Resource Consumption ('Resource Exhaustion')
1
CWE-434
 Unrestricted Upload of File with Dangerous Type
1
CWE-1
 Location
CWE-2
 Environment
CWE-3
 Technology-specific Environment Issues
CWE-4
 J2EE Environment Issues
CWE-5
 J2EE Misconfiguration: Data Transmission Without Encryption
CWE-6
 J2EE Misconfiguration: Insufficient Session-ID Length
CWE-7
 J2EE Misconfiguration: Missing Custom Error Page
CWE-8
 J2EE Misconfiguration: Entity Bean Declared Remote
CWE-9
 J2EE Misconfiguration: Weak Access Permissions for EJB Methods
CWE-10
 ASP.NET Environment Issues
CWE-11
 ASP.NET Misconfiguration: Creating Debug Binary
CWE-12
 ASP.NET Misconfiguration: Missing Custom Error Page
CWE-13
 ASP.NET Misconfiguration: Password in Configuration File
CWE-14
 Compiler Removal of Code to Clear Buffers
CWE-15
 External Control of System or Configuration Setting
CWE-17
 Code
CWE-18
 Source Code
CWE-19
 Data Handling
CWE-21
 Pathname Traversal and Equivalence Errors
CWE-23
 Relative Path Traversal
CWE-24
 Path Traversal: '../filedir'

 

Copyright 2012, cxsecurity.com