MemberOf | View - a subset of CWE entries that provides a way of examining CWE content. The two main view structures are Slices (flat lists) and Graphs (containing relationships between entries). | 711 | Weaknesses in OWASP Top Ten (2004) |
HasMember | Variant - a weakness that is described at a very low level of detail, typically limited to a specific language or technology. More specific than a Base weakness. | 14 | Compiler Removal of Code to Clear Buffers |
HasMember | Base - a weakness that is described in an abstract fashion, but with sufficient details to infer specific methods for detection and prevention. More general than a Variant weakness, but more specific than a Class weakness. | 226 | Sensitive Information Uncleared Before Release |
HasMember | Variant - a weakness that is described at a very low level of detail, typically limited to a specific language or technology. More specific than a Base weakness. | 261 | Weak Cryptography for Passwords |
HasMember | Base - a weakness that is described in an abstract fashion, but with sufficient details to infer specific methods for detection and prevention. More general than a Variant weakness, but more specific than a Class weakness. | 311 | Missing Encryption of Sensitive Data |
HasMember | Base - a weakness that is described in an abstract fashion, but with sufficient details to infer specific methods for detection and prevention. More general than a Variant weakness, but more specific than a Class weakness. | 321 | Use of Hard-coded Cryptographic Key |
HasMember | Class - a weakness that is described in a very abstract fashion, typically independent of any specific language or technology. More general than a Base weakness. | 326 | Inadequate Encryption Strength |
HasMember | Base - a weakness that is described in an abstract fashion, but with sufficient details to infer specific methods for detection and prevention. More general than a Variant weakness, but more specific than a Class weakness. | 327 | Use of a Broken or Risky Cryptographic Algorithm |
HasMember | Variant - a weakness that is described at a very low level of detail, typically limited to a specific language or technology. More specific than a Base weakness. | 539 | Information Exposure Through Persistent Cookies |
HasMember | Variant - a weakness that is described at a very low level of detail, typically limited to a specific language or technology. More specific than a Base weakness. | 591 | Sensitive Data Storage in Improperly Locked Memory |
HasMember | Variant - a weakness that is described at a very low level of detail, typically limited to a specific language or technology. More specific than a Base weakness. | 598 | Information Exposure Through Query Strings in GET Request |