Categories (CWE)

CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection') 669
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') 632
CWE-787 Out-of-bounds Write 537
CWE-59 Improper Link Resolution Before File Access ('Link Following') 510
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 455
CWE-19 Data Processing Errors 393
CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion') 392
CWE-611 Improper Restriction of XML External Entity Reference ('XXE') 342
CWE-434 Unrestricted Upload of File with Dangerous Type 297
CWE-295 Improper Certificate Validation 296
CWE-16 Configuration 292
CWE-798 Use of Hard-coded Credentials 238
CWE-426 Untrusted Search Path 236
CWE-601 URL Redirection to Untrusted Site ('Open Redirect') 207
CWE-134 Use of Externally-Controlled Format String 201
CWE-502 Deserialization of Untrusted Data 199
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 190
CWE-17 Code 182
CWE-285 Improper Authorization 167
CWE-704 Incorrect Type Conversion or Cast 152

Filter by ID

Filter by name