| CWE-614 |
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute |
|
|
| CWE-613 |
Insufficient Session Expiration |
|
|
| CWE-612 |
Improper Authorization of Index Containing Sensitive Information |
|
|
| CWE-611 |
Improper Restriction of XML External Entity Reference |
|
|
| CWE-610 |
Externally Controlled Reference to a Resource in Another Sphere |
|
|
| CWE-61 |
UNIX Symbolic Link (Symlink) Following |
|
|
| CWE-609 |
Double-Checked Locking |
|
|
| CWE-608 |
Struts: Non-private Field in ActionForm Class |
|
|
| CWE-607 |
Public Static Final Field References Mutable Object |
|
|
| CWE-606 |
Unchecked Input for Loop Condition |
|
|
| CWE-605 |
Multiple Binds to the Same Port |
|
|
| CWE-603 |
Use of Client-Side Authentication |
|
|
| CWE-602 |
Client-Side Enforcement of Server-Side Security |
|
|
| CWE-601 |
URL Redirection to Untrusted Site ('Open Redirect') |
|
|
| CWE-600 |
Uncaught Exception in Servlet |
|
|
| CWE-60 |
DEPRECATED: UNIX Path Link Problems |
|
|
| CWE-6 |
J2EE Misconfiguration: Insufficient Session-ID Length |
|
|
| CWE-599 |
Missing Validation of OpenSSL Certificate |
|
|
| CWE-598 |
Use of GET Request Method With Sensitive Query Strings |
|
|
| CWE-597 |
Use of Wrong Operator in String Comparison |
|
|
