| ID |
Name |
CVE |
| CWE-119 |
Improper Restriction of Operations within the Bounds of a Memory Buffer |
|
|
12422 |
| CWE-79 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') |
|
|
12018 |
| CWE-20 |
Improper Input Validation |
|
|
7801 |
| CWE-200 |
Information Exposure |
|
|
6638 |
| CWE-264 |
Permissions, Privileges, and Access Controls |
|
|
5938 |
| CWE-89 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') |
|
|
5692 |
| CWE-22 |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') |
|
|
3050 |
| CWE-399 |
Resource Management Errors |
|
|
3015 |
| CWE-310 |
Cryptographic Issues |
|
|
2558 |
| CWE-94 |
Improper Control of Generation of Code ('Code Injection') |
|
|
2446 |
| CWE-352 |
Cross-Site Request Forgery (CSRF) |
|
|
2375 |
| CWE-125 |
Out-of-bounds Read |
|
|
2173 |
| CWE-287 |
Improper Authentication |
|
|
1778 |
| CWE-284 |
Improper Access Control |
|
|
1665 |
| CWE-189 |
Numeric Errors |
|
|
1390 |
| CWE-416 |
Use After Free |
|
|
1294 |
| CWE-190 |
Integer Overflow or Wraparound |
|
|
1150 |
| CWE-255 |
Credentials Management |
|
|
994 |
| CWE-476 |
NULL Pointer Dereference |
|
|
948 |
| CWE-78 |
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') |
|
|
808 |
