CWE-942 过度许可的跨域白名单 Overly Permissive Cross-domain Whitelist 结构: Simple Abstraction: Variant 状态: Inco...
CWE-95 动态执行代码中指令转义处理不恰当(Eval注入)
CWE-95 动态执行代码中指令转义处理不恰当(Eval注入) Improper Neutralization of Directives in Dynamically Evaluated Code ...
CWE-96 静态存储代码中指令转义处理不恰当(静态代码注入)
CWE-96 静态存储代码中指令转义处理不恰当(静态代码注入) Improper Neutralization of Directives in Statically Saved Code ('Sta...
CWE-97 Web页面中服务端引用(SSI)转义处理不恰当
CWE-97 Web页面中服务端引用(SSI)转义处理不恰当 Improper Neutralization of Server-Side Includes (SSI) Within a Web Pa...
CWE-98 PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含)
CWE-98 PHP程序中Include/Require语句包含文件控制不恰当(PHP远程文件包含) Improper Control of Filename for Include/Require ...
CWE-99 对资源描述符的控制不恰当(资源注入)
CWE-99 对资源描述符的控制不恰当(资源注入) Improper Control of Resource Identifiers ('Resource Injection') 结构: Simple...
CWE-94 对生成代码的控制不恰当(代码注入)
CWE-94 对生成代码的控制不恰当(代码注入) Improper Control of Generation of Code ('Code Injection') 结构: Simple Abstra...
CWE-186 过度严格的正则表达式
CWE-186 过度严格的正则表达式 Overly Restrictive Regular Expression 结构: Simple Abstraction: Base 状态: Draft 被利用可...
CWE-160 起始特殊元素净化处理不恰当
CWE-160 起始特殊元素净化处理不恰当 Improper Neutralization of Leading Special Elements 结构: Simple Abstraction: Va...
CWE-164 内部特殊元素净化处理不恰当
CWE-164 内部特殊元素净化处理不恰当 Improper Neutralization of Internal Special Elements 结构: Simple Abstraction: V...
CWE-166 缺失特殊元素净化处理不恰当
CWE-166 缺失特殊元素净化处理不恰当 Improper Handling of Missing Special Element 结构: Simple Abstraction: Base 状态: ...
CWE-168 不一致特殊元素净化处理不恰当
CWE-168 不一致特殊元素净化处理不恰当 Improper Handling of Inconsistent Special Elements 结构: Simple Abstraction: Ba...
98