CSAF
view release on metacpan or search on metacpan
lib/CSAF/Util/CWE.pm view on Meta::CPAN
'CWE-87' => q"Improper Neutralization of Alternate XSS Syntax",
'CWE-88' => q"Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')",
'CWE-89' => q"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')",
'CWE-90' => q"Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')",
'CWE-91' => q"XML Injection (aka Blind XPath Injection)",
'CWE-92' => q"DEPRECATED: Improper Sanitization of Custom Special Characters",
'CWE-93' => q"Improper Neutralization of CRLF Sequences ('CRLF Injection')",
'CWE-94' => q"Improper Control of Generation of Code ('Code Injection')",
'CWE-95' => q"Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')",
'CWE-96' => q"Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')",
'CWE-97' => q"Improper Neutralization of Server-Side Includes (SSI) Within a Web Page",
'CWE-98' =>
"Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')",
'CWE-99' => q"Improper Control of Resource Identifiers ('Resource Injection')",
'CWE-102' => q"Struts: Duplicate Validation Forms",
'CWE-103' => q"Struts: Incomplete validate() Method Definition",
'CWE-104' => q"Struts: Form Bean Does Not Extend Validation Class",
'CWE-105' => q"Struts: Form Field Without Validator",
'CWE-106' => q"Struts: Plug-in Framework not in Use",
'CWE-107' => q"Struts: Unused Validation Form",
'CWE-108' => q"Struts: Unvalidated Action Form",
'CWE-109' => q"Struts: Validator Turned Off",
'CWE-110' => q"Struts: Validator Without Form Field",
'CWE-111' => q"Direct Use of Unsafe JNI",
'CWE-112' => q"Missing XML Validation",
'CWE-113' => q"Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')",
'CWE-114' => q"Process Control",
'CWE-115' => q"Misinterpretation of Input",
'CWE-116' => q"Improper Encoding or Escaping of Output",
'CWE-117' => q"Improper Output Neutralization for Logs",
'CWE-118' => q"Incorrect Access of Indexable Resource ('Range Error')",
'CWE-119' => q"Improper Restriction of Operations within the Bounds of a Memory Buffer",
'CWE-120' => q"Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
'CWE-121' => q"Stack-based Buffer Overflow",
'CWE-122' => q"Heap-based Buffer Overflow",
'CWE-123' => q"Write-what-where Condition",
'CWE-124' => q"Buffer Underwrite ('Buffer Underflow')",
'CWE-125' => q"Out-of-bounds Read",
'CWE-126' => q"Buffer Over-read",
'CWE-127' => q"Buffer Under-read",
'CWE-128' => q"Wrap-around Error",
'CWE-129' => q"Improper Validation of Array Index",
'CWE-130' => q"Improper Handling of Length Parameter Inconsistency",
'CWE-131' => q"Incorrect Calculation of Buffer Size",
'CWE-132' => q"DEPRECATED: Miscalculated Null Termination",
'CWE-134' => q"Use of Externally-Controlled Format String",
'CWE-135' => q"Incorrect Calculation of Multi-Byte String Length",
'CWE-138' => q"Improper Neutralization of Special Elements",
'CWE-140' => q"Improper Neutralization of Delimiters",
'CWE-141' => q"Improper Neutralization of Parameter/Argument Delimiters",
'CWE-142' => q"Improper Neutralization of Value Delimiters",
'CWE-143' => q"Improper Neutralization of Record Delimiters",
'CWE-144' => q"Improper Neutralization of Line Delimiters",
'CWE-145' => q"Improper Neutralization of Section Delimiters",
'CWE-146' => q"Improper Neutralization of Expression/Command Delimiters",
'CWE-147' => q"Improper Neutralization of Input Terminators",
'CWE-148' => q"Improper Neutralization of Input Leaders",
'CWE-149' => q"Improper Neutralization of Quoting Syntax",
'CWE-150' => q"Improper Neutralization of Escape, Meta, or Control Sequences",
'CWE-151' => q"Improper Neutralization of Comment Delimiters",
'CWE-152' => q"Improper Neutralization of Macro Symbols",
'CWE-153' => q"Improper Neutralization of Substitution Characters",
'CWE-154' => q"Improper Neutralization of Variable Name Delimiters",
'CWE-155' => q"Improper Neutralization of Wildcards or Matching Symbols",
'CWE-156' => q"Improper Neutralization of Whitespace",
'CWE-157' => q"Failure to Sanitize Paired Delimiters",
'CWE-158' => q"Improper Neutralization of Null Byte or NUL Character",
'CWE-159' => q"Improper Handling of Invalid Use of Special Elements",
'CWE-160' => q"Improper Neutralization of Leading Special Elements",
'CWE-161' => q"Improper Neutralization of Multiple Leading Special Elements",
'CWE-162' => q"Improper Neutralization of Trailing Special Elements",
'CWE-163' => q"Improper Neutralization of Multiple Trailing Special Elements",
'CWE-164' => q"Improper Neutralization of Internal Special Elements",
'CWE-165' => q"Improper Neutralization of Multiple Internal Special Elements",
'CWE-166' => q"Improper Handling of Missing Special Element",
'CWE-167' => q"Improper Handling of Additional Special Element",
'CWE-168' => q"Improper Handling of Inconsistent Special Elements",
'CWE-170' => q"Improper Null Termination",
'CWE-172' => q"Encoding Error",
'CWE-173' => q"Improper Handling of Alternate Encoding",
'CWE-174' => q"Double Decoding of the Same Data",
'CWE-175' => q"Improper Handling of Mixed Encoding",
'CWE-176' => q"Improper Handling of Unicode Encoding",
'CWE-177' => q"Improper Handling of URL Encoding (Hex Encoding)",
'CWE-178' => q"Improper Handling of Case Sensitivity",
'CWE-179' => q"Incorrect Behavior Order: Early Validation",
'CWE-180' => q"Incorrect Behavior Order: Validate Before Canonicalize",
'CWE-181' => q"Incorrect Behavior Order: Validate Before Filter",
'CWE-182' => q"Collapse of Data into Unsafe Value",
'CWE-183' => q"Permissive List of Allowed Inputs",
'CWE-184' => q"Incomplete List of Disallowed Inputs",
'CWE-185' => q"Incorrect Regular Expression",
'CWE-186' => q"Overly Restrictive Regular Expression",
'CWE-187' => q"Partial String Comparison",
'CWE-188' => q"Reliance on Data/Memory Layout",
'CWE-190' => q"Integer Overflow or Wraparound",
'CWE-191' => q"Integer Underflow (Wrap or Wraparound)",
'CWE-192' => q"Integer Coercion Error",
'CWE-193' => q"Off-by-one Error",
'CWE-194' => q"Unexpected Sign Extension",
'CWE-195' => q"Signed to Unsigned Conversion Error",
'CWE-196' => q"Unsigned to Signed Conversion Error",
'CWE-197' => q"Numeric Truncation Error",
'CWE-198' => q"Use of Incorrect Byte Ordering",
'CWE-200' => q"Exposure of Sensitive Information to an Unauthorized Actor",
'CWE-201' => q"Insertion of Sensitive Information Into Sent Data",
'CWE-202' => q"Exposure of Sensitive Information Through Data Queries",
'CWE-203' => q"Observable Discrepancy",
'CWE-204' => q"Observable Response Discrepancy",
'CWE-205' => q"Observable Behavioral Discrepancy",
'CWE-206' => q"Observable Internal Behavioral Discrepancy",
'CWE-207' => q"Observable Behavioral Discrepancy With Equivalent Products",
'CWE-208' => q"Observable Timing Discrepancy",
'CWE-209' => q"Generation of Error Message Containing Sensitive Information",
'CWE-210' => q"Self-generated Error Message Containing Sensitive Information",
'CWE-211' => q"Externally-Generated Error Message Containing Sensitive Information",
'CWE-212' => q"Improper Removal of Sensitive Information Before Storage or Transfer",
'CWE-213' => q"Exposure of Sensitive Information Due to Incompatible Policies",
'CWE-214' => q"Invocation of Process Using Visible Sensitive Information",
'CWE-215' => q"Insertion of Sensitive Information Into Debugging Code",
'CWE-216' => q"DEPRECATED: Containment Errors (Container Errors)",
( run in 1.514 second using v1.01-cache-2.11-cpan-39bf76dae61 )