Categories (CWE)

CWE-704 Incorrect Type Conversion or Cast 166
CWE-918 Server-Side Request Forgery (SSRF) 159
CWE-415 Double Free 145
CWE-369 Divide By Zero 97
CWE-384 Session Fixation 97
CWE-532 Information Exposure Through Log Files 95
CWE-326 Inadequate Encryption Strength 93
CWE-320 Key Management Errors 84
CWE-388 Error Handling 59
CWE-129 Improper Validation of Array Index 58
CWE-347 Improper Verification of Cryptographic Signature 57
CWE-306 Missing Authentication for Critical Function 52
CWE-345 Insufficient Verification of Data Authenticity 49
CWE-640 Weak Password Recovery Mechanism for Forgotten Password 48
CWE-191 Integer Underflow (Wrap or Wraparound) 46
CWE-427 Uncontrolled Search Path Element 42
CWE-346 Origin Validation Error 33
CWE-327 Use of a Broken or Risky Cryptographic Algorithm 33
CWE-428 Unquoted Search Path or Element 33
CWE-93 Improper Neutralization of CRLF Sequences ('CRLF Injection') 31

Filter by ID

Filter by name