Category-714: OWASP Top Ten 2007 Category A3 - Malicious File Execution
ID: 714
Status: Obsolete
Summary
Weaknesses in this category are related to the A3 category in the OWASP Top Ten 2007.
Membership
ID | NAME |
---|---|
CWE-434 | 危险类型文件的不加限制上传 |
CWE-78 | OS命令中使用的特殊元素转义处理不恰当(OS命令注入) |
CWE-95 | 动态执行代码中指令转义处理不恰当(Eval注入) |
CWE-98 | PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含) |
文章来源于互联网:scap中文网
相关推荐: Category-880: CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR)
Category-880: CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR) ID: 880 Status: Incomplete Summary Weaknesse…
- 左青龙
- 微信扫一扫
- 右白虎
- 微信扫一扫
评论