CWE

Common Weakness Enumeration

A Community-Developed Dictionary of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors Common Weakness Scoring System
Common Weakness Risk Analysis Framework
Home > CWE List > CWE- Individual Dictionary Definition (2.7)  

Presentation Filter:

CWE-810: OWASP Top Ten 2010 Category A1 - Injection

 
OWASP Top Ten 2010 Category A1 - Injection
Category ID: 810 (Category)Status: Incomplete
+ Description

Description Summary

Weaknesses in this category are related to the A1 category in the OWASP Top Ten 2010.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ParentOfWeakness BaseWeakness Base78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Weaknesses in OWASP Top Ten (2010) (primary)809
ParentOfWeakness BaseWeakness Base88Argument Injection or Modification
Weaknesses in OWASP Top Ten (2010) (primary)809
ParentOfWeakness BaseWeakness Base89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Weaknesses in OWASP Top Ten (2010) (primary)809
ParentOfWeakness BaseWeakness Base90Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')
Weaknesses in OWASP Top Ten (2010) (primary)809
ParentOfWeakness BaseWeakness Base91XML Injection (aka Blind XPath Injection)
Weaknesses in OWASP Top Ten (2010) (primary)809
MemberOfViewView809Weaknesses in OWASP Top Ten (2010)
Weaknesses in OWASP Top Ten (2010) (primary)809
+ References
OWASP. "Top 10 2010-A1-Injection". <http://www.owasp.org/index.php/Top_10_2010-A1-Injection>.
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2010-06-17MITREInternal CWE Team
Page Last Updated: June 23, 2014