Categories (CWE)

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') 605
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection') 540
CWE-59 Improper Link Resolution Before File Access ('Link Following') 498
CWE-787 Out-of-bounds Write 427
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 386
CWE-19 Data Processing Errors 338
CWE-16 Configuration 289
CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion') 267
CWE-295 Improper Certificate Validation 266
CWE-611 Improper Restriction of XML External Entity Reference ('XXE') 258
CWE-434 Unrestricted Upload of File with Dangerous Type 221
CWE-426 Untrusted Search Path 207
CWE-134 Use of Externally-Controlled Format String 198
CWE-798 Use of Hard-coded Credentials 194
CWE-17 Code 182
CWE-601 URL Redirection to Untrusted Site ('Open Redirect') 172
CWE-502 Deserialization of Untrusted Data 161
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 156
CWE-704 Incorrect Type Conversion or Cast 130
CWE-285 Improper Authorization 117

Filter by ID

Filter by name