| CWE-812 |
OWASP Top Ten 2010 Category A3 - Broken Authentication and Session Management |
|
|
| CWE-811 |
OWASP Top Ten 2010 Category A2 - Cross-Site Scripting (XSS) |
|
|
| CWE-810 |
OWASP Top Ten 2010 Category A1 - Injection |
|
|
| CWE-81 |
Improper Neutralization of Script in an Error Message Web Page |
|
|
| CWE-808 |
2010 Top 25 - Weaknesses On the Cusp |
|
|
| CWE-807 |
Reliance on Untrusted Inputs in a Security Decision |
|
|
| CWE-806 |
Buffer Access Using Size of Source Buffer |
|
|
| CWE-805 |
Buffer Access with Incorrect Length Value |
|
|
| CWE-804 |
Guessable CAPTCHA |
|
|
| CWE-803 |
2010 Top 25 - Porous Defenses |
|
|
| CWE-802 |
2010 Top 25 - Risky Resource Management |
|
|
| CWE-801 |
2010 Top 25 - Insecure Interaction Between Components |
|
|
| CWE-80 |
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) |
|
|
| CWE-8 |
J2EE Misconfiguration: Entity Bean Declared Remote |
|
|
| CWE-799 |
Improper Control of Interaction Frequency |
|
|
| CWE-798 |
Use of Hard-coded Credentials |
|
|
| CWE-797 |
Only Filtering Special Elements at an Absolute Position |
|
|
| CWE-796 |
Only Filtering Special Elements Relative to a Marker |
|
|
| CWE-795 |
Only Filtering Special Elements at a Specified Location |
|
|
| CWE-794 |
Incomplete Filtering of Multiple Instances of Special Elements |
|
|
