| CWE-926 |
Improper Export of Android Application Components |
|
|
| CWE-925 |
Improper Verification of Intent by Broadcast Receiver |
|
|
| CWE-924 |
Improper Enforcement of Message Integrity During Transmission in a Communication Channel |
|
|
| CWE-923 |
Improper Restriction of Communication Channel to Intended Endpoints |
|
|
| CWE-922 |
Insecure Storage of Sensitive Information |
|
|
| CWE-921 |
Storage of Sensitive Data in a Mechanism without Access Control |
|
|
| CWE-920 |
Improper Restriction of Power Consumption |
|
|
| CWE-92 |
DEPRECATED: Improper Sanitization of Custom Special Characters |
|
|
| CWE-918 |
Server-Side Request Forgery (SSRF) |
|
|
| CWE-917 |
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
|
|
| CWE-916 |
Use of Password Hash With Insufficient Computational Effort |
|
|
| CWE-915 |
Improperly Controlled Modification of Dynamically-Determined Object Attributes |
|
|
| CWE-914 |
Improper Control of Dynamically-Identified Variables |
|
|
| CWE-913 |
Improper Control of Dynamically-Managed Code Resources |
|
|
| CWE-912 |
Hidden Functionality |
|
|
| CWE-911 |
Improper Update of Reference Count |
|
|
| CWE-910 |
Use of Expired File Descriptor |
|
|
| CWE-91 |
XML Injection (aka Blind XPath Injection) |
|
|
| CWE-909 |
Missing Initialization of Resource |
|
|
| CWE-908 |
Use of Uninitialized Resource |
|
|
