Categories (CWE)

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer 12412
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 12003
CWE-20 Improper Input Validation 7789
CWE-200 Information Exposure 6629
CWE-264 Permissions, Privileges, and Access Controls 5938
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') 5688
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 3043
CWE-399 Resource Management Errors 3015
CWE-310 Cryptographic Issues 2558
CWE-94 Improper Control of Generation of Code ('Code Injection') 2440
CWE-352 Cross-Site Request Forgery (CSRF) 2370
CWE-125 Out-of-bounds Read 2171
CWE-287 Improper Authentication 1770
CWE-284 Improper Access Control 1665
CWE-189 Numeric Errors 1390
CWE-416 Use After Free 1293
CWE-190 Integer Overflow or Wraparound 1148
CWE-255 Credentials Management 994
CWE-476 NULL Pointer Dereference 948
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 803

Filter by ID

Filter by name