Categories (CWE)

CWE-787 Out-of-bounds Write 804
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') 693
CWE-254 Security Features 589
CWE-59 Improper Link Resolution Before File Access ('Link Following') 532
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection') 514
CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion') 494
CWE-434 Unrestricted Upload of File with Dangerous Type 414
CWE-611 Improper Restriction of XML External Entity Reference ('XXE') 413
CWE-295 Improper Certificate Validation 368
CWE-732 Incorrect Permission Assignment for Critical Resource 359
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 340
CWE-798 Use of Hard-coded Credentials 329
CWE-772 Missing Release of Resource after Effective Lifetime 312
CWE-269 Improper Privilege Management 305
CWE-426 Untrusted Search Path 287
CWE-16 Configuration 277
CWE-601 URL Redirection to Untrusted Site ('Open Redirect') 275
CWE-502 Deserialization of Untrusted Data 273
CWE-19 Data Processing Errors 243
CWE-134 Use of Externally-Controlled Format String 218

Filter by ID

Filter by name