Categories (CWE)

CWE-918 Server-Side Request Forgery (SSRF) 174
CWE-704 Incorrect Type Conversion or Cast 172
CWE-415 Double Free 158
CWE-532 Information Exposure Through Log Files 114
CWE-369 Divide By Zero 109
CWE-384 Session Fixation 105
CWE-326 Inadequate Encryption Strength 100
CWE-320 Key Management Errors 89
CWE-129 Improper Validation of Array Index 65
CWE-388 Error Handling 63
CWE-347 Improper Verification of Cryptographic Signature 61
CWE-306 Missing Authentication for Critical Function 58
CWE-345 Insufficient Verification of Data Authenticity 54
CWE-191 Integer Underflow (Wrap or Wraparound) 53
CWE-640 Weak Password Recovery Mechanism for Forgotten Password 51
CWE-427 Uncontrolled Search Path Element 45
CWE-428 Unquoted Search Path or Element 35
CWE-346 Origin Validation Error 34
CWE-327 Use of a Broken or Risky Cryptographic Algorithm 34
CWE-93 Improper Neutralization of CRLF Sequences ('CRLF Injection') 33

Filter by ID

Filter by name