Categories (CWE)

CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection') 862
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') 665
CWE-787 Out-of-bounds Write 642
CWE-59 Improper Link Resolution Before File Access ('Link Following') 524
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 496
CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion') 475
CWE-19 Data Processing Errors 417
CWE-611 Improper Restriction of XML External Entity Reference ('XXE') 393
CWE-434 Unrestricted Upload of File with Dangerous Type 365
CWE-295 Improper Certificate Validation 326
CWE-16 Configuration 295
CWE-798 Use of Hard-coded Credentials 282
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 274
CWE-426 Untrusted Search Path 262
CWE-601 URL Redirection to Untrusted Site ('Open Redirect') 247
CWE-502 Deserialization of Untrusted Data 232
CWE-285 Improper Authorization 229
CWE-275 Permission Issues 210
CWE-134 Use of Externally-Controlled Format String 206
CWE-17 Code 180

Filter by ID

Filter by name