Categories (CWE)

CWE-404 Improper Resource Shutdown or Release 7
CWE-18 Source Code 7
CWE-116 Improper Encoding or Escaping of Output 6
CWE-297 Improper Validation of Certificate with Host Mismatch 6
CWE-199 Information Management Errors 6
CWE-184 Incomplete Blacklist 5
CWE-538 File and Directory Information Exposure 5
CWE-749 Exposed Dangerous Method or Function 5
CWE-332 Insufficient Entropy in PRNG 5
CWE-769 File Descriptor Exhaustion 5
CWE-441 Unintended Proxy or Intermediary ('Confused Deputy') 4
CWE-371 State Issues 4
CWE-534 Information Exposure Through Debug Log Files 4
CWE-665 Improper Initialization 3
CWE-21 Pathname Traversal and Equivalence Errors 3
CWE-407 Algorithmic Complexity 3
CWE-642 External Control of Critical State Data 2
CWE-1 Location 2
CWE-943 Improper Neutralization of Special Elements in Data Query Logic 2
CWE-99 Improper Control of Resource Identifiers ('Resource Injection') 2

Filter by ID

Filter by name