CWE Top 25
CWE 787 -Out of Bounds WriteCWE 79 - Cross-Site Scripting (XSS)CWE 125 - Out-of-Bounds ReadCWE 20 - Improper Input ValidationCWE 78/77 - Command InjectionCWE 89 - SQL InjectionCWE 416 - Use After FreeCWE 352 - Cross-Sire Request ForgeryCWE 434 - Unrestricted File UploadCWE 306 - Missing Authentication for Critical FunctionCWE 22 - Path TraversalCWE 476 - NULL Pointer DereferenceCWE 502 - Deserialization of Untrusted DataCWE 190 - Integer Overflow or WraparoundCWE 287 - Improper AuthenticationCWE 798 - Use of Hard-Coded CredentialsCWE 862 - Missing AuthorizationCWE 119 - Buffer OverflowCWE 276 - Incorrect Default PermissionsCWE 91 - XML InjectionCWE 918 - SSRFCWE 362 - Race ConditionCWE 611 - XXE InjectionCWE 94 - Code Injection
Last updated
Was this helpful?