CWE

Common Weakness Enumeration

A Community-Developed Dictionary of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors Common Weakness Scoring System
Common Weakness Risk Analysis Framework
Home > CWE List > CWE- Individual Dictionary Definition (2.7)  

Presentation Filter:

CWE-864: 2011 Top 25 - Insecure Interaction Between Components

 
2011 Top 25 - Insecure Interaction Between Components
Category ID: 864 (Category)Status: Incomplete
+ Description

Description Summary

Weaknesses in this category are listed in the "Insecure Interaction Between Components" section of the 2011 CWE/SANS Top 25 Most Dangerous Software Errors.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ParentOfWeakness BaseWeakness Base78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
ParentOfWeakness BaseWeakness Base79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
ParentOfWeakness BaseWeakness Base89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
ParentOfCompound Element: CompositeCompound Element: Composite352Cross-Site Request Forgery (CSRF)
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
ParentOfWeakness BaseWeakness Base434Unrestricted Upload of File with Dangerous Type
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
ParentOfWeakness VariantWeakness Variant601URL Redirection to Untrusted Site ('Open Redirect')
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
ParentOfWeakness ClassWeakness Class829Inclusion of Functionality from Untrusted Control Sphere
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
MemberOfViewView900Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors
Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors (primary)900
+ References
"2011 CWE/SANS Top 25 Most Dangerous Software Errors". 2011-06-27. <http://cwe.mitre.org/top25>.
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2011-06-25Internal CWE Team
Page Last Updated: June 23, 2014