Categories (CWE)

CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection') 769
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') 648
CWE-787 Out-of-bounds Write 584
CWE-59 Improper Link Resolution Before File Access ('Link Following') 516
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 478
CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion') 428
CWE-19 Data Processing Errors 405
CWE-611 Improper Restriction of XML External Entity Reference ('XXE') 361
CWE-434 Unrestricted Upload of File with Dangerous Type 331
CWE-295 Improper Certificate Validation 308
CWE-16 Configuration 292
CWE-798 Use of Hard-coded Credentials 264
CWE-426 Untrusted Search Path 254
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 236
CWE-601 URL Redirection to Untrusted Site ('Open Redirect') 223
CWE-502 Deserialization of Untrusted Data 222
CWE-134 Use of Externally-Controlled Format String 203
CWE-275 Permission Issues 181
CWE-17 Code 180
CWE-285 Improper Authorization 178

Filter by ID

Filter by name