Categories (CWE)

CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection') 632
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') 625
CWE-787 Out-of-bounds Write 520
CWE-59 Improper Link Resolution Before File Access ('Link Following') 504
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 443
CWE-19 Data Processing Errors 380
CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion') 350
CWE-611 Improper Restriction of XML External Entity Reference ('XXE') 325
CWE-16 Configuration 291
CWE-295 Improper Certificate Validation 287
CWE-434 Unrestricted Upload of File with Dangerous Type 270
CWE-798 Use of Hard-coded Credentials 231
CWE-426 Untrusted Search Path 229
CWE-134 Use of Externally-Controlled Format String 200
CWE-601 URL Redirection to Untrusted Site ('Open Redirect') 196
CWE-502 Deserialization of Untrusted Data 190
CWE-17 Code 182
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 178
CWE-285 Improper Authorization 156
CWE-704 Incorrect Type Conversion or Cast 150

Filter by ID

Filter by name