| CWE-945 |
SFP Secondary Cluster: Insecure Resource Access |
|
|
| CWE-944 |
SFP Secondary Cluster: Access Management |
|
|
| CWE-943 |
Improper Neutralization of Special Elements in Data Query Logic |
|
|
| CWE-942 |
Permissive Cross-domain Policy with Untrusted Domains |
|
|
| CWE-941 |
Incorrectly Specified Destination in a Communication Channel |
|
|
| CWE-940 |
Improper Verification of Source of a Communication Channel |
|
|
| CWE-94 |
Improper Control of Generation of Code ('Code Injection') |
|
|
| CWE-939 |
Improper Authorization in Handler for Custom URL Scheme |
|
|
| CWE-938 |
OWASP Top Ten 2013 Category A10 - Unvalidated Redirects and Forwards |
|
|
| CWE-937 |
OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities |
|
|
| CWE-936 |
OWASP Top Ten 2013 Category A8 - Cross-Site Request Forgery (CSRF) |
|
|
| CWE-935 |
OWASP Top Ten 2013 Category A7 - Missing Function Level Access Control |
|
|
| CWE-934 |
OWASP Top Ten 2013 Category A6 - Sensitive Data Exposure |
|
|
| CWE-933 |
OWASP Top Ten 2013 Category A5 - Security Misconfiguration |
|
|
| CWE-932 |
OWASP Top Ten 2013 Category A4 - Insecure Direct Object References |
|
|
| CWE-931 |
OWASP Top Ten 2013 Category A3 - Cross-Site Scripting (XSS) |
|
|
| CWE-930 |
OWASP Top Ten 2013 Category A2 - Broken Authentication and Session Management |
|
|
| CWE-93 |
Improper Neutralization of CRLF Sequences ('CRLF Injection') |
|
|
| CWE-929 |
OWASP Top Ten 2013 Category A1 - Injection |
|
|
| CWE-927 |
Use of Implicit Intent for Sensitive Communication |
|
|
