BaseBase Absolute Path Traversal - (36)
BaseBase Acceptance of Extraneous Untrusted Data With Trusted Data - (349)
BaseBase Access of Memory Location After End of Buffer - (788)
BaseBase Access of Memory Location Before Start of Buffer - (786)
BaseBase Access of Resource Using Incompatible Type ('Type Confusion') - (843)
BaseBase Access of Uninitialized Pointer - (824)
VariantVariant Access to Critical Private Variable via Public Method - (767)
BaseBase Addition of Data Structure Sentinel - (464)
BaseBase Algorithmic Complexity - (407)
VariantVariant Allocation of File Descriptors or Handles Without Limits or Throttling - (774)
BaseBase Allocation of Resources Without Limits or Throttling - (770)
ClassClass Always-Incorrect Control Flow Implementation - (670)
BaseBase Argument Injection or Modification - (88)
VariantVariant Array Declared Public, Final, and Static - (582)
VariantVariant ASP.NET Misconfiguration: Creating Debug Binary - (11)
VariantVariant ASP.NET Misconfiguration: Missing Custom Error Page - (12)
VariantVariant ASP.NET Misconfiguration: Not Using Input Validation Framework - (554)
VariantVariant ASP.NET Misconfiguration: Password in Configuration File - (13)
VariantVariant ASP.NET Misconfiguration: Use of Identity Impersonation - (556)
VariantVariant Assigning instead of Comparing - (481)
BaseBase Assignment of a Fixed Address to a Pointer - (587)
VariantVariant Assignment to Variable without Use - (563)
ClassClass Asymmetric Resource Consumption (Amplification) - (405)
VariantVariant Attempt to Access Child of a Non-structure Pointer - (588)
VariantVariant Authentication Bypass by Alternate Name - (289)
VariantVariant Authentication Bypass by Assumed-Immutable Data - (302)
BaseBase Authentication Bypass by Capture-replay - (294)
BaseBase Authentication Bypass by Primary Weakness - (305)
BaseBase Authentication Bypass by Spoofing - (290)
BaseBase Authentication Bypass Using an Alternate Path or Channel - (288)
VariantVariant Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created - (593)
BaseBase Authorization Bypass Through User-Controlled Key - (639)
VariantVariant Authorization Bypass Through User-Controlled SQL Primary Key - (566)
BaseBase Behavioral Change in New Version or Environment - (439)
VariantVariant Buffer Access Using Size of Source Buffer - (806)
BaseBase Buffer Access with Incorrect Length Value - (805)
BaseBase Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') - (120)
VariantVariant Buffer Over-read - (126)
VariantVariant Buffer Under-read - (127)
BaseBase Buffer Underwrite ('Buffer Underflow') - (124)
VariantVariant Call to Non-ubiquitous API - (589)
VariantVariant Call to Thread run() instead of start() - (572)
ClassClass Channel Accessible by Non-Endpoint ('Man-in-the-Middle') - (300)
VariantVariant Cleartext Storage in a File or on Disk - (313)
VariantVariant Cleartext Storage in the Registry - (314)
BaseBase Cleartext Storage of Sensitive Information - (312)
VariantVariant Cleartext Storage of Sensitive Information in a Cookie - (315)
VariantVariant Cleartext Storage of Sensitive Information in Executable - (318)
VariantVariant Cleartext Storage of Sensitive Information in GUI - (317)
VariantVariant Cleartext Storage of Sensitive Information in Memory - (316)
BaseBase Cleartext Transmission of Sensitive Information - (319)
BaseBase Client-Side Enforcement of Server-Side Security - (602)
VariantVariant clone() Method Without super.clone() - (580)
VariantVariant Cloneable Class Containing Sensitive Information - (498)
BaseBase Collapse of Data into Unsafe Value - (182)
VariantVariant Command Shell in Externally Accessible Directory - (553)
VariantVariant Comparing instead of Assigning - (482)
VariantVariant Comparison of Classes by Name - (486)
BaseBase Comparison of Object References Instead of Object Contents - (595)
BaseBase Compiler Optimization Removal or Modification of Security-critical Code - (733)
BaseBase Compiler Removal of Code to Clear Buffers - (14)
ClassClass Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') - (362)
ClassClass Containment Errors (Container Errors) - (216)
BaseBase Context Switching Race Condition - (368)
ClassClass Covert Channel - (514)
BaseBase Covert Storage Channel - (515)
BaseBase Covert Timing Channel - (385)
VariantVariant Creation of chroot Jail Without Changing Working Directory - (243)
BaseBase Creation of Temporary File in Directory with Incorrect Permissions - (379)
BaseBase Creation of Temporary File With Insecure Permissions - (378)
VariantVariant Critical Public Variable Without Final Modifier - (493)
VariantVariant Critical Variable Declared Public - (766)
CompositeComposite Cross-Site Request Forgery (CSRF) - (352)
BaseBase Dangerous Signal Handler not Disabled During Sensitive Operations - (432)
BaseBase Dangling Database Cursor ('Cursor Injection') - (619)
VariantVariant Dead Code - (561)
BaseBase Deadlock - (833)
BaseBase Declaration of Catch for Generic Exception - (396)
BaseBase Declaration of Throws for Generic Exception - (397)
BaseBase Deletion of Data Structure Sentinel - (463)
BaseBase Deployment of Wrong Handler - (430)
VariantVariant Deserialization of Untrusted Data - (502)
ClassClass Detection of Error Condition Without Action - (390)
BaseBase Direct Request ('Forced Browsing') - (425)
BaseBase Direct Use of Unsafe JNI - (111)
BaseBase Divide By Zero - (369)
VariantVariant Double Decoding of the Same Data - (174)
VariantVariant Double Free - (415)
BaseBase Double-Checked Locking - (609)
VariantVariant Doubled Character XSS Manipulations - (85)
BaseBase Download of Code Without Integrity Check - (494)
BaseBase Duplicate Key in Associative List (Alist) - (462)
ClassClass Duplicate Operations on Resource - (675)
BaseBase Dynamic Variable Evaluation - (627)
VariantVariant EJB Bad Practices: Use of AWT Swing - (575)
VariantVariant EJB Bad Practices: Use of Class Loader - (578)
VariantVariant EJB Bad Practices: Use of Java I/O - (576)
VariantVariant EJB Bad Practices: Use of Sockets - (577)
VariantVariant EJB Bad Practices: Use of Synchronization Primitives - (574)
ClassClass Embedded Malicious Code - (506)
VariantVariant Empty Password in Configuration File - (258)
VariantVariant Empty Synchronized Block - (585)
ClassClass Encoding Error - (172)
BaseBase Excessive Iteration - (834)
BaseBase Executable Regular Expression Error - (624)
BaseBase Execution After Redirect (EAR) - (698)
ClassClass Execution with Unnecessary Privileges - (250)
BaseBase Expected Behavior Violation - (440)
BaseBase Expired Pointer Dereference - (825)
VariantVariant Explicit Call to Finalize() - (586)
BaseBase Exposed Dangerous Method or Function - (749)
VariantVariant Exposed IOCTL with Insufficient Access Control - (782)
BaseBase Exposed Unsafe ActiveX Method - (618)
VariantVariant Exposure of Access Control List Files to an Unauthorized Control Sphere - (529)
VariantVariant Exposure of Backup File to an Unauthorized Control Sphere - (530)
VariantVariant Exposure of Core Dump File to an Unauthorized Control Sphere - (528)
VariantVariant Exposure of CVS Repository to an Unauthorized Control Sphere - (527)
VariantVariant Exposure of Data Element to Wrong Session - (488)
BaseBase Exposure of File Descriptor to Unintended Control Sphere ('File Descriptor Leak') - (403)
ClassClass Exposure of Private Information ('Privacy Violation') - (359)
ClassClass Exposure of Resource to Wrong Sphere - (668)
VariantVariant Exposure of Sensitive Data Through Data Queries - (202)
VariantVariant Exposure of System Data to an Unauthorized Control Sphere - (497)
VariantVariant Expression is Always False - (570)
VariantVariant Expression is Always True - (571)
BaseBase External Control of Assumed-Immutable Web Parameter - (472)
ClassClass External Control of Critical State Data - (642)
ClassClass External Control of File Name or Path - (73)
BaseBase External Control of System or Configuration Setting - (15)
ClassClass External Influence of Sphere Definition - (673)
BaseBase External Initialization of Trusted Variables or Data Stores - (454)
ClassClass Externally Controlled Reference to a Resource in Another Sphere - (610)
VariantVariant Failure to Handle Incomplete Element - (239)
VariantVariant Failure to Handle Missing Parameter - (234)
VariantVariant Failure to Sanitize Paired Delimiters - (157)
ClassClass Failure to Sanitize Special Element - (159)
ClassClass Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) - (75)
BaseBase File and Directory Information Exposure - (538)
BaseBase Files or Directories Accessible to External Parties - (552)
VariantVariant finalize() Method Declared Public - (583)
VariantVariant finalize() Method Without super.finalize() - (568)
VariantVariant Free of Memory not on the Heap - (590)
VariantVariant Free of Pointer not at Start of Buffer - (761)
VariantVariant Function Call With Incorrect Argument Type - (686)
VariantVariant Function Call With Incorrect Number of Arguments - (685)
VariantVariant Function Call With Incorrect Order of Arguments - (683)
VariantVariant Function Call With Incorrect Variable or Reference as Argument - (688)
VariantVariant Function Call With Incorrectly Specified Argument Value - (687)
BaseBase Function Call with Incorrectly Specified Arguments - (628)
BaseBase Guessable CAPTCHA - (804)
VariantVariant Heap-based Buffer Overflow - (122)
ClassClass Hidden Functionality - (912)
ClassClass Improper Access Control - (284)
VariantVariant Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code - (781)
ClassClass Improper Adherence to Coding Standards - (710)
ClassClass Improper Authentication - (287)
ClassClass Improper Authorization - (285)
BaseBase Improper Authorization in Handler for Custom URL Scheme - (939)
BaseBase Improper Certificate Validation - (295)
BaseBase Improper Check for Certificate Revocation - (299)
BaseBase Improper Check for Dropped Privileges - (273)
ClassClass Improper Check for Unusual or Exceptional Conditions - (754)
ClassClass Improper Check or Handling of Exceptional Conditions - (703)
VariantVariant Improper Cleanup on Thrown Exception - (460)
VariantVariant Improper Clearing of Heap Memory Before Release ('Heap Inspection') - (244)
ClassClass Improper Control of a Resource Through its Lifetime - (664)
BaseBase Improper Control of Document Type Definition - (827)
BaseBase Improper Control of Dynamically-Identified Variables - (914)
ClassClass Improper Control of Dynamically-Managed Code Resources - (913)
BaseBase Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') - (98)
ClassClass Improper Control of Generation of Code ('Code Injection') - (94)
ClassClass Improper Control of Interaction Frequency - (799)
BaseBase Improper Control of Resource Identifiers ('Resource Injection') - (99)
BaseBase Improper Cross-boundary Removal of Sensitive Data - (212)
ClassClass Improper Encoding or Escaping of Output - (116)
BaseBase Improper Enforcement of a Single, Unique Action - (837)
BaseBase Improper Enforcement of Behavioral Workflow - (841)
ClassClass Improper Enforcement of Message Integrity During Transmission in a Communication Channel - (924)
ClassClass Improper Enforcement of Message or Data Structure - (707)
VariantVariant Improper Export of Android Application Components - (926)
ClassClass Improper Filtering of Special Elements - (790)
BaseBase Improper Following of a Certificate's Chain of Trust - (296)
ClassClass Improper Following of Specification by Caller - (573)
BaseBase Improper Handling of Additional Special Element - (167)
VariantVariant Improper Handling of Alternate Encoding - (173)
VariantVariant Improper Handling of Apple HFS+ Alternate Data Stream Path - (72)
BaseBase Improper Handling of Case Sensitivity - (178)
ClassClass Improper Handling of Exceptional Conditions - (755)
VariantVariant Improper Handling of Extra Parameters - (235)
VariantVariant Improper Handling of Extra Values - (231)
BaseBase Improper Handling of File Names that Identify Virtual Resources - (66)
BaseBase Improper Handling of Highly Compressed Data (Data Amplification) - (409)
VariantVariant Improper Handling of Incomplete Structural Elements - (238)
BaseBase Improper Handling of Inconsistent Special Elements - (168)
BaseBase Improper Handling of Inconsistent Structural Elements - (240)
VariantVariant Improper Handling of Insufficient Entropy in TRNG - (333)
BaseBase Improper Handling of Insufficient Permissions or Privileges - (280)
BaseBase Improper Handling of Insufficient Privileges - (274)
BaseBase Improper Handling of Length Parameter Inconsistency - (130)
BaseBase Improper Handling of Missing Special Element - (166)
VariantVariant Improper Handling of Missing Values - (230)
VariantVariant Improper Handling of Mixed Encoding - (175)
BaseBase Improper Handling of Parameters - (233)
BaseBase Improper Handling of Structural Elements - (237)
ClassClass Improper Handling of Syntactically Invalid Structure - (228)
VariantVariant Improper Handling of Undefined Parameters - (236)
VariantVariant Improper Handling of Undefined Values - (232)
BaseBase Improper Handling of Unexpected Data Type - (241)
VariantVariant Improper Handling of Unicode Encoding - (176)
VariantVariant Improper Handling of URL Encoding (Hex Encoding) - (177)
BaseBase Improper Handling of Values - (229)
VariantVariant Improper Handling of Windows ::DATA Alternate Data Stream - (69)
VariantVariant Improper Handling of Windows Device Names - (67)
ClassClass Improper Initialization - (665)
ClassClass Improper Input Validation - (20)
ClassClass Improper Interaction Between Multiple Entities - (435)
ClassClass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') - (22)
BaseBase Improper Link Resolution Before File Access ('Link Following') - (59)
BaseBase Improper Locking - (667)
VariantVariant Improper Neutralization of Alternate XSS Syntax - (87)
VariantVariant Improper Neutralization of Comment Delimiters - (151)
BaseBase Improper Neutralization of CRLF Sequences ('CRLF Injection') - (93)
BaseBase Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') - (113)
BaseBase Improper Neutralization of Data within XPath Expressions ('XPath Injection') - (643)
BaseBase Improper Neutralization of Data within XQuery Expressions ('XQuery Injection') - (652)
BaseBase Improper Neutralization of Delimiters - (140)
BaseBase Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') - (95)
BaseBase Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') - (96)
VariantVariant Improper Neutralization of Encoded URI Schemes in a Web Page - (84)
BaseBase Improper Neutralization of Equivalent Special Elements - (76)
VariantVariant Improper Neutralization of Escape, Meta, or Control Sequences - (150)
VariantVariant Improper Neutralization of Expression/Command Delimiters - (146)
VariantVariant Improper Neutralization of HTTP Headers for Scripting Syntax - (644)
BaseBase Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') - (79)
VariantVariant Improper Neutralization of Input Leaders - (148)
VariantVariant Improper Neutralization of Input Terminators - (147)
VariantVariant Improper Neutralization of Internal Special Elements - (164)
VariantVariant Improper Neutralization of Invalid Characters in Identifiers in Web Pages - (86)
VariantVariant Improper Neutralization of Leading Special Elements - (160)
VariantVariant Improper Neutralization of Line Delimiters - (144)
VariantVariant Improper Neutralization of Macro Symbols - (152)
VariantVariant Improper Neutralization of Multiple Internal Special Elements - (165)
VariantVariant Improper Neutralization of Multiple Leading Special Elements - (161)
VariantVariant Improper Neutralization of Multiple Trailing Special Elements - (163)
VariantVariant Improper Neutralization of Null Byte or NUL Character - (158)
VariantVariant Improper Neutralization of Parameter/Argument Delimiters - (141)
VariantVariant Improper Neutralization of Quoting Syntax - (149)
VariantVariant Improper Neutralization of Record Delimiters - (143)
VariantVariant Improper Neutralization of Script in an Error Message Web Page - (81)
VariantVariant Improper Neutralization of Script in Attributes in a Web Page - (83)
VariantVariant Improper Neutralization of Script in Attributes of IMG Tags in a Web Page - (82)
VariantVariant Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) - (80)
VariantVariant Improper Neutralization of Section Delimiters - (145)
VariantVariant Improper Neutralization of Server-Side Includes (SSI) Within a Web Page - (97)
ClassClass Improper Neutralization of Special Elements - (138)
ClassClass Improper Neutralization of Special Elements in Data Query Logic - (943)
ClassClass Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') - (74)
ClassClass Improper Neutralization of Special Elements used in a Command ('Command Injection') - (77)
BaseBase Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') - (917)
BaseBase Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') - (90)
BaseBase Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') - (78)
BaseBase Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') - (89)
VariantVariant Improper Neutralization of Substitution Characters - (153)
VariantVariant Improper Neutralization of Trailing Special Elements - (162)
VariantVariant Improper Neutralization of Value Delimiters - (142)
VariantVariant Improper Neutralization of Variable Name Delimiters - (154)
VariantVariant Improper Neutralization of Whitespace - (156)
VariantVariant Improper Neutralization of Wildcards or Matching Symbols - (155)
BaseBase Improper Null Termination - (170)
BaseBase Improper Output Neutralization for Logs - (117)
ClassClass Improper Ownership Management - (282)
BaseBase Improper Preservation of Permissions - (281)
ClassClass Improper Privilege Management - (269)
ClassClass Improper Protection of Alternate Path - (424)
BaseBase Improper Release of Memory Before Removing Last Reference ('Memory Leak') - (401)
BaseBase Improper Resolution of Path Equivalence - (41)
BaseBase Improper Resource Locking - (413)
BaseBase Improper Resource Shutdown or Release - (404)
ClassClass Improper Restriction of Communication Channel to Intended Endpoints - (923)
VariantVariant Improper Restriction of Cross-Origin Permission to window.opener.location - (1022)
BaseBase Improper Restriction of Excessive Authentication Attempts - (307)
BaseBase Improper Restriction of Names for Files and Other Resources - (641)
ClassClass Improper Restriction of Operations within the Bounds of a Memory Buffer - (119)
BaseBase Improper Restriction of Power Consumption - (920)
VariantVariant Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') - (776)
BaseBase Improper Restriction of Rendered UI Layers or Frames - (1021)
VariantVariant Improper Restriction of XML External Entity Reference ('XXE') - (611)
BaseBase Improper Synchronization - (662)
BaseBase Improper Update of Reference Count - (911)
BaseBase Improper Validation of Array Index - (129)
VariantVariant Improper Validation of Certificate Expiration - (298)
VariantVariant Improper Validation of Certificate with Host Mismatch - (297)
VariantVariant Improper Validation of Function Hook Arguments - (622)
BaseBase Improper Validation of Integrity Check Value - (354)
BaseBase Improper Verification of Cryptographic Signature - (347)
VariantVariant Improper Verification of Intent by Broadcast Receiver - (925)
BaseBase Improper Verification of Source of a Communication Channel - (940)
BaseBase Improperly Controlled Modification of Dynamically-Determined Object Attributes - (915)
BaseBase Improperly Implemented Security Check for Standard - (358)
ClassClass Inadequate Encryption Strength - (326)
BaseBase Inappropriate Encoding for Output Context - (838)
ClassClass Inclusion of Functionality from Untrusted Control Sphere - (829)
BaseBase Inclusion of Web Functionality from an Untrusted Source - (830)
BaseBase Incomplete Blacklist - (184)
ChainChain Incomplete Blacklist to Cross-Site Scripting - (692)
BaseBase Incomplete Cleanup - (459)
VariantVariant Incomplete Filtering of Multiple Instances of Special Elements - (794)
VariantVariant Incomplete Filtering of One or More Instances of Special Elements - (792)
BaseBase Incomplete Filtering of Special Elements - (791)
VariantVariant Incomplete Identification of Uploaded File Variables (PHP) - (616)
BaseBase Incomplete Internal State Distinction - (372)
BaseBase Incomplete Model of Endpoint Features - (437)
BaseBase Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') - (444)
ClassClass Incorrect Access of Indexable Resource ('Range Error') - (118)
ClassClass Incorrect Authorization - (863)
ClassClass Incorrect Behavior Order - (696)
BaseBase Incorrect Behavior Order: Authorization Before Parsing and Canonicalization - (551)
BaseBase Incorrect Behavior Order: Early Amplification - (408)
BaseBase Incorrect Behavior Order: Early Validation - (179)
BaseBase Incorrect Behavior Order: Validate Before Canonicalize - (180)
BaseBase Incorrect Behavior Order: Validate Before Filter - (181)
VariantVariant Incorrect Block Delimitation - (483)
ClassClass Incorrect Calculation - (682)
BaseBase Incorrect Calculation of Buffer Size - (131)
BaseBase Incorrect Calculation of Multi-Byte String Length - (135)
BaseBase Incorrect Check of Function Return Value - (253)
ClassClass Incorrect Control Flow Scoping - (705)
ClassClass Incorrect Conversion between Numeric Types - (681)
VariantVariant Incorrect Default Permissions - (276)
VariantVariant Incorrect Execution-Assigned Permissions - (279)
BaseBase Incorrect Implementation of Authentication Algorithm - (303)
BaseBase Incorrect Ownership Assignment - (708)
ClassClass Incorrect Permission Assignment for Critical Resource - (732)
BaseBase Incorrect Pointer Scaling - (468)
BaseBase Incorrect Privilege Assignment - (266)
ClassClass Incorrect Provision of Specified Functionality - (684)
ClassClass Incorrect Regular Expression - (185)
ClassClass Incorrect Resource Transfer Between Spheres - (669)
BaseBase Incorrect Semantic Object Comparison - (596)
VariantVariant Incorrect Short Circuit Evaluation - (768)
BaseBase Incorrect Synchronization - (821)
ClassClass Incorrect Type Conversion or Cast - (704)
BaseBase Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) - (335)
BaseBase Incorrect Use of Privileged APIs - (648)
ClassClass Incorrect User Management - (286)
BaseBase Incorrectly Specified Destination in a Communication Channel - (941)
ClassClass Information Exposure - (200)
VariantVariant Information Exposure of Internal State Through Behavioral Inconsistency - (206)
BaseBase Information Exposure Through an Error Message - (209)
VariantVariant Information Exposure Through an External Behavioral Inconsistency - (207)
BaseBase Information Exposure Through Behavioral Discrepancy - (205)
VariantVariant Information Exposure Through Browser Caching - (525)
VariantVariant Information Exposure Through Caching - (524)
VariantVariant Information Exposure Through Cleanup Log Files - (542)
VariantVariant Information Exposure Through Comments - (615)
VariantVariant Information Exposure Through Debug Information - (215)
VariantVariant Information Exposure Through Debug Log Files - (534)
VariantVariant Information Exposure Through Directory Listing - (548)
ClassClass Information Exposure Through Discrepancy - (203)
VariantVariant Information Exposure Through Environmental Variables - (526)
BaseBase Information Exposure Through Externally-Generated Error Message - (211)
VariantVariant Information Exposure Through Include Source Code - (541)
VariantVariant Information Exposure Through Indexing of Private Data - (612)
VariantVariant Information Exposure Through Java Runtime Error Message - (537)
VariantVariant Information Exposure Through Log Files - (532)
VariantVariant Information Exposure Through Persistent Cookies - (539)
VariantVariant Information Exposure Through Process Environment - (214)
VariantVariant Information Exposure Through Query Strings in GET Request - (598)
BaseBase Information Exposure Through Self-generated Error Message - (210)
VariantVariant Information Exposure Through Sent Data - (201)
VariantVariant Information Exposure Through Server Error Message - (550)
VariantVariant Information Exposure Through Server Log Files - (533)
VariantVariant Information Exposure Through Servlet Runtime Error Message - (536)
VariantVariant Information Exposure Through Shell Error Message - (535)
VariantVariant Information Exposure Through Source Code - (540)
VariantVariant Information Exposure Through Test Code - (531)
BaseBase Information Exposure Through Timing Discrepancy - (208)
VariantVariant Information Exposure Through WSDL File - (651)
ClassClass Information Loss or Omission - (221)
BaseBase Insecure Default Variable Initialization - (453)
VariantVariant Insecure Inherited Permissions - (277)
VariantVariant Insecure Preserved Inherited Permissions - (278)
ClassClass Insecure Storage of Sensitive Information - (922)
BaseBase Insecure Temporary File - (377)
ClassClass Insufficient Comparison - (697)
BaseBase Insufficient Compartmentalization - (653)
ClassClass Insufficient Control Flow Management - (691)
BaseBase Insufficient Control of Network Message Volume (Network Amplification) - (406)
BaseBase Insufficient Entropy - (331)
VariantVariant Insufficient Entropy in PRNG - (332)
BaseBase Insufficient Logging - (778)
BaseBase Insufficient Psychological Acceptability - (655)
BaseBase Insufficient Resource Pool - (410)
BaseBase Insufficient Session Expiration - (613)
BaseBase Insufficient Type Distinction - (351)
BaseBase Insufficient UI Warning of Dangerous Operations - (357)
ClassClass Insufficient Verification of Data Authenticity - (345)
BaseBase Insufficient Visual Distinction of Homoglyphs Presented to User - (1007)
BaseBase Insufficiently Protected Credentials - (522)
ClassClass Integer Coercion Error - (192)
BaseBase Integer Overflow or Wraparound - (190)
ChainChain Integer Overflow to Buffer Overflow - (680)
BaseBase Integer Underflow (Wrap or Wraparound) - (191)
BaseBase Intentional Information Exposure - (213)
BaseBase Interpretation Conflict - (436)
VariantVariant J2EE Bad Practices: Direct Management of Connections - (245)
VariantVariant J2EE Bad Practices: Direct Use of Sockets - (246)
VariantVariant J2EE Bad Practices: Direct Use of Threads - (383)
VariantVariant J2EE Bad Practices: Non-serializable Object Stored in Session - (579)
VariantVariant J2EE Bad Practices: Use of System.exit() - (382)
VariantVariant J2EE Framework: Saving Unserializable Objects to Disk - (594)
VariantVariant J2EE Misconfiguration: Data Transmission Without Encryption - (5)
VariantVariant J2EE Misconfiguration: Entity Bean Declared Remote - (8)
VariantVariant J2EE Misconfiguration: Insufficient Session-ID Length - (6)
VariantVariant J2EE Misconfiguration: Missing Custom Error Page - (7)
VariantVariant J2EE Misconfiguration: Plaintext Password in Configuration File - (555)
VariantVariant J2EE Misconfiguration: Weak Access Permissions for EJB Methods - (9)
BaseBase Key Exchange without Entity Authentication - (322)
ClassClass Lack of Administrator Control over Security - (671)
BaseBase Least Privilege Violation - (272)
BaseBase Leftover Debug Code - (489)
BaseBase Logging of Excessive Data - (779)
BaseBase Logic/Time Bomb - (511)
BaseBase Loop with Unreachable Exit Condition ('Infinite Loop') - (835)
BaseBase Misinterpretation of Input - (115)
VariantVariant Mismatched Memory Management Routines - (762)
VariantVariant Missing Authentication for Critical Function - (306)
ClassClass Missing Authorization - (862)
VariantVariant Missing Check for Certificate Revocation after Initial Check - (370)
BaseBase Missing Critical Step in Authentication - (304)
ClassClass Missing Custom Error Page - (756)
VariantVariant Missing Default Case in Switch Statement - (478)
BaseBase Missing Encryption of Sensitive Data - (311)
BaseBase Missing Handler - (431)
BaseBase Missing Initialization of a Variable - (456)
BaseBase Missing Initialization of Resource - (909)
BaseBase Missing Lock Check - (414)
VariantVariant Missing Password Field Masking - (549)
BaseBase Missing Reference to Active Allocated Resource - (771)
VariantVariant Missing Reference to Active File Descriptor or Handle - (773)
VariantVariant Missing Release of File Descriptor or Handle after Effective Lifetime - (775)
BaseBase Missing Release of Resource after Effective Lifetime - (772)
BaseBase Missing Report of Error Condition - (392)
BaseBase Missing Required Cryptographic Step - (325)
BaseBase Missing Standardized Error Handling Mechanism - (544)
BaseBase Missing Support for Integrity Check - (353)
BaseBase Missing Synchronization - (820)
VariantVariant Missing Validation of OpenSSL Certificate - (599)
BaseBase Missing XML Validation - (112)
BaseBase Modification of Assumed-Immutable Data (MAID) - (471)
BaseBase Multiple Binds to the Same Port - (605)
BaseBase Multiple Interpretations of UI Input - (450)
VariantVariant Multiple Locks of a Critical Resource - (764)
VariantVariant Multiple Unlocks of a Critical Resource - (765)
VariantVariant .NET Misconfiguration: Use of Impersonation - (520)
BaseBase Non-exit on Failed Initialization - (455)
BaseBase Non-Replicating Malicious Code - (508)
ClassClass Not Failing Securely ('Failing Open') - (636)
VariantVariant Not Using a Random IV with CBC Mode - (329)
ClassClass Not Using Complete Mediation - (638)
VariantVariant Not Using Password Aging - (262)
VariantVariant Null Byte Interaction Error (Poison Null Byte) - (626)
BaseBase NULL Pointer Dereference - (476)
BaseBase Numeric Range Comparison Without Minimum Check - (839)
BaseBase Numeric Truncation Error - (197)
BaseBase Object Model Violation: Just One of Equals and Hashcode Defined - (581)
BaseBase Obscured Security-relevant Information by Alternate Name - (224)
BaseBase Obsolete Feature in UI - (448)
BaseBase Off-by-one Error - (193)
BaseBase Omission of Security-relevant Information - (223)
BaseBase Omitted Break Statement in Switch - (484)
VariantVariant Only Filtering One Instance of a Special Element - (793)
BaseBase Only Filtering Special Elements at a Specified Location - (795)
VariantVariant Only Filtering Special Elements at an Absolute Position - (797)
VariantVariant Only Filtering Special Elements Relative to a Marker - (796)
BaseBase Operation on a Resource after Expiration or Release - (672)
BaseBase Operation on Resource in Wrong Phase of Lifetime - (666)
VariantVariant Operator Precedence Logic Error - (783)
BaseBase Origin Validation Error - (346)
BaseBase Out-of-bounds Read - (125)
BaseBase Out-of-bounds Write - (787)
VariantVariant Overly Permissive Cross-domain Whitelist - (942)
BaseBase Overly Restrictive Account Lockout Mechanism - (645)
BaseBase Overly Restrictive Regular Expression - (186)
BaseBase Partial Comparison - (187)
BaseBase Passing Mutable Objects to an Untrusted Method - (374)
BaseBase Password Aging with Long Expiration - (263)
VariantVariant Password in Configuration File - (260)
VariantVariant Path Equivalence: ' filename' (Leading Space) - (47)
VariantVariant Path Equivalence: '/./' (Single Dot Directory) - (55)
VariantVariant Path Equivalence: '//multiple/leading/slash' - (50)
VariantVariant Path Equivalence: '/multiple//internal/slash' - (51)
VariantVariant Path Equivalence: '/multiple/trailing/slash//' - (52)
VariantVariant Path Equivalence: '\multiple\\internal\backslash' - (53)
VariantVariant Path Equivalence: 'fakedir/../realdir/filename' - (57)
VariantVariant Path Equivalence: 'file name' (Internal Whitespace) - (48)
VariantVariant Path Equivalence: 'filedir*' (Wildcard) - (56)
VariantVariant Path Equivalence: 'filedir\' (Trailing Backslash) - (54)
VariantVariant Path Equivalence: 'filename ' (Trailing Space) - (46)
VariantVariant Path Equivalence: 'file.name' (Internal Dot) - (44)
VariantVariant Path Equivalence: 'file...name' (Multiple Internal Dot) - (45)
VariantVariant Path Equivalence: 'filename....' (Multiple Trailing Dot) - (43)
VariantVariant Path Equivalence: 'filename.' (Trailing Dot) - (42)
VariantVariant Path Equivalence: 'filename/' (Trailing Slash) - (49)
VariantVariant Path Equivalence: Windows 8.3 Filename - (58)
VariantVariant Path Traversal: '....' (Multiple Dot) - (33)
VariantVariant Path Traversal: '...' (Triple Dot) - (32)
VariantVariant Path Traversal: '....//' - (34)
VariantVariant Path Traversal: '.../...//' - (35)
VariantVariant Path Traversal: '/../filedir' - (25)
VariantVariant Path Traversal: '/absolute/pathname/here' - (37)
VariantVariant Path Traversal: '/dir/../filename' - (26)
VariantVariant Path Traversal: '../filedir' - (24)
VariantVariant Path Traversal: '\..\filename' - (29)
VariantVariant Path Traversal: '\\UNC\share\name\' (Windows UNC Share) - (40)
VariantVariant Path Traversal: '\absolute\pathname\here' - (38)
VariantVariant Path Traversal: '\dir\..\filename' - (30)
VariantVariant Path Traversal: '..\filedir' - (28)
VariantVariant Path Traversal: 'C:dirname' - (39)
VariantVariant Path Traversal: 'dir/../../filename' - (27)
VariantVariant Path Traversal: 'dir\..\..\filename' - (31)
CompositeComposite Permission Race Condition During Resource Copy - (689)
BaseBase Permissive Regular Expression - (625)
BaseBase Permissive Whitelist - (183)
VariantVariant PHP External Variable Modification - (473)
BaseBase Placement of User into Incorrect Group - (842)
VariantVariant Plaintext Storage of a Password - (256)
ClassClass Predictability Problems - (340)
BaseBase Predictable Exact Value from Previous Values - (342)
BaseBase Predictable from Observable State - (341)
BaseBase Predictable Seed in Pseudo-Random Number Generator (PRNG) - (337)
BaseBase Predictable Value Range from Previous Values - (343)
BaseBase Premature Release of Resource During Expected Lifetime - (826)
VariantVariant Private Array-Typed Field Returned From A Public Method - (495)
BaseBase Privilege Chaining - (268)
BaseBase Privilege Context Switching Error - (270)
BaseBase Privilege Defined With Unsafe Actions - (267)
ClassClass Privilege Dropping / Lowering Errors - (271)
BaseBase Process Control - (114)
BaseBase Product UI does not Warn User of Unsafe Actions - (356)
ClassClass Protection Mechanism Failure - (693)
VariantVariant Public cloneable() Method Without Final ('Object Hijack') - (491)
VariantVariant Public Data Assigned to Private Array-Typed Field - (496)
VariantVariant Public Static Field Not Marked Final - (500)
VariantVariant Public Static Final Field References Mutable Object - (607)
BaseBase Race Condition During Access to Alternate Channel - (421)
BaseBase Race Condition Enabling Link Following - (363)
BaseBase Race Condition in Switch - (365)
BaseBase Race Condition within a Thread - (366)
VariantVariant Reachable Assertion - (617)
VariantVariant Reflection Attack in an Authentication Protocol - (301)
VariantVariant Regular Expression without Anchors - (777)
BaseBase Relative Path Traversal - (23)
BaseBase Release of Invalid Pointer or Reference - (763)
BaseBase Reliance on a Single Factor in a Security Decision - (654)
BaseBase Reliance on Cookies without Validation and Integrity Checking - (565)
VariantVariant Reliance on Cookies without Validation and Integrity Checking in a Security Decision - (784)
BaseBase Reliance on Data/Memory Layout - (188)
VariantVariant Reliance on File Name or Extension of Externally-Supplied File - (646)
VariantVariant Reliance on IP Address for Authentication - (291)
BaseBase Reliance on Obfuscation or Encryption of Security-Relevant Inputs without Integrity Checking - (649)
VariantVariant Reliance on Package-level Scope - (487)
VariantVariant Reliance on Reverse DNS Resolution for a Security-Critical Action - (350)
BaseBase Reliance on Security Through Obscurity - (656)
ClassClass Reliance on Undefined, Unspecified, or Implementation-Defined Behavior - (758)
BaseBase Reliance on Untrusted Inputs in a Security Decision - (807)
BaseBase Replicating Malicious Code (Virus or Worm) - (509)
BaseBase Response Discrepancy Information Exposure - (204)
BaseBase Return Inside Finally Block - (584)
BaseBase Return of Pointer Value Outside of Expected Range - (466)
BaseBase Return of Stack Variable Address - (562)
BaseBase Return of Wrong Status Code - (393)
BaseBase Returning a Mutable Object to an Untrusted Caller - (375)
BaseBase Reusing a Nonce, Key Pair in Encryption - (323)
BaseBase Reversible One-Way Hash - (328)
BaseBase Same Seed in Pseudo-Random Number Generator (PRNG) - (336)
ClassClass Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade') - (757)
VariantVariant Sensitive Cookie in HTTPS Session Without 'Secure' Attribute - (614)
VariantVariant Sensitive Cookie Without 'HttpOnly' Flag - (1004)
VariantVariant Sensitive Data Storage in Improperly Locked Memory - (591)
VariantVariant Sensitive Data Under FTP Root - (220)
VariantVariant Sensitive Data Under Web Root - (219)
BaseBase Sensitive Information Uncleared Before Release - (226)
VariantVariant Serializable Class Containing Sensitive Data - (499)
BaseBase Server-Side Request Forgery (SSRF) - (918)
CompositeComposite Session Fixation - (384)
BaseBase Signal Handler Function Associated with Multiple Signals - (831)
BaseBase Signal Handler Race Condition - (364)
VariantVariant Signal Handler Use of a Non-reentrant Function - (479)
BaseBase Signal Handler with Functionality that is not Asynchronous-Safe - (828)
VariantVariant Signed to Unsigned Conversion Error - (195)
BaseBase Small Seed Space in PRNG - (339)
BaseBase Small Space of Random Values - (334)
BaseBase Spyware - (512)
VariantVariant SQL Injection: Hibernate - (564)
VariantVariant Stack-based Buffer Overflow - (121)
BaseBase Storage of Sensitive Data in a Mechanism without Access Control - (921)
BaseBase Storing Passwords in a Recoverable Format - (257)
VariantVariant Struts: Duplicate Validation Forms - (102)
VariantVariant Struts: Form Bean Does Not Extend Validation Class - (104)
VariantVariant Struts: Form Field Without Validator - (105)
VariantVariant Struts: Incomplete validate() Method Definition - (103)
VariantVariant Struts: Non-private Field in ActionForm Class - (608)
VariantVariant Struts: Plug-in Framework not in Use - (106)
VariantVariant Struts: Unused Validation Form - (107)
VariantVariant Struts: Unvalidated Action Form - (108)
VariantVariant Struts: Validator Turned Off - (109)
VariantVariant Struts: Validator Without Form Field - (110)
VariantVariant Suspicious Comment - (546)
BaseBase Symbolic Name not Mapping to Correct Object - (386)
BaseBase The UI Performs the Wrong Action - (449)
BaseBase Time-of-check Time-of-use (TOCTOU) Race Condition - (367)
ClassClass Transmission of Private Resources into a New Sphere ('Resource Leak') - (402)
BaseBase Trapdoor - (510)
BaseBase Trojan Horse - (507)
BaseBase Truncation of Security-relevant Information - (222)
BaseBase Trust Boundary Violation - (501)
BaseBase Trust of System Event Data - (360)
VariantVariant Trusting HTTP Permission Methods on the Server Side - (650)
BaseBase UI Discrepancy for Security Feature - (446)
BaseBase Uncaught Exception - (248)
BaseBase Uncaught Exception in Servlet - (600)
BaseBase Unchecked Error Condition - (391)
BaseBase Unchecked Input for Loop Condition - (606)
BaseBase Unchecked Return Value - (252)
ChainChain Unchecked Return Value to NULL Pointer Dereference - (690)
BaseBase Uncontrolled File Descriptor Consumption - (769)
VariantVariant Uncontrolled Memory Allocation - (789)
BaseBase Uncontrolled Recursion - (674)
BaseBase Uncontrolled Resource Consumption ('Resource Exhaustion') - (400)
BaseBase Uncontrolled Search Path Element - (427)
BaseBase Undefined Behavior for Input to API - (475)
BaseBase Unexpected Sign Extension - (194)
BaseBase Unexpected Status Code or Return Value - (394)
BaseBase Unimplemented or Unsupported Feature in UI - (447)
ClassClass Unintended Proxy or Intermediary ('Confused Deputy') - (441)
VariantVariant UNIX Hard Link - (62)
CompositeComposite UNIX Symbolic Link (Symlink) Following - (61)
BaseBase Unlock of a Resource that is not Locked - (832)
ClassClass Unnecessary Complexity in Protection Mechanism (Not Using 'Economy of Mechanism') - (637)
VariantVariant Unparsed Raw Web Content Delivery - (433)
BaseBase Unprotected Alternate Channel - (420)
BaseBase Unprotected Primary Channel - (419)
VariantVariant Unprotected Transport of Credentials - (523)
VariantVariant Unprotected Windows Messaging Channel ('Shatter') - (422)
BaseBase Unquoted Search Path or Element - (428)
BaseBase Unrestricted Externally Accessible Lock - (412)
BaseBase Unrestricted Upload of File with Dangerous Type - (434)
VariantVariant Unsafe ActiveX Control Marked Safe For Scripting - (623)
VariantVariant Unsigned to Signed Conversion Error - (196)
BaseBase Unsynchronized Access to Shared Data in a Multithreaded Context - (567)
BaseBase Untrusted Pointer Dereference - (822)
CompositeComposite Untrusted Search Path - (426)
BaseBase Unverified Ownership - (283)
VariantVariant Unverified Password Change - (620)
VariantVariant URL Redirection to Untrusted Site ('Open Redirect') - (601)
BaseBase Use After Free - (416)
BaseBase Use of a Broken or Risky Cryptographic Algorithm - (327)
BaseBase Use of a Key Past its Expiration Date - (324)
BaseBase Use of a Non-reentrant Function in a Concurrent Context - (663)
BaseBase Use of a One-Way Hash with a Predictable Salt - (760)
BaseBase Use of a One-Way Hash without a Salt - (759)
BaseBase Use of Client-Side Authentication - (603)
BaseBase Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) - (338)
BaseBase Use of Expired File Descriptor - (910)
BaseBase Use of Externally-Controlled Format String - (134)
BaseBase Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') - (470)
BaseBase Use of Function with Inconsistent Implementations - (474)
VariantVariant Use of getlogin() in Multithreaded Application - (558)
BaseBase Use of Hard-coded Credentials - (798)
BaseBase Use of Hard-coded Cryptographic Key - (321)
BaseBase Use of Hard-coded Password - (259)
VariantVariant Use of Hard-coded, Security-relevant Constants - (547)
VariantVariant Use of Implicit Intent for Sensitive Communication - (927)
BaseBase Use of Incorrect Byte Ordering - (198)
BaseBase Use of Incorrect Operator - (480)
ClassClass Use of Incorrectly-Resolved Name or Reference - (706)
BaseBase Use of Inherently Dangerous Function - (242)
VariantVariant Use of Inner Class Containing Sensitive Data - (492)
ClassClass Use of Insufficiently Random Values - (330)
BaseBase Use of Invariant Value in Dynamically Changing Context - (344)
BaseBase Use of Less Trusted Source - (348)
BaseBase Use of Low-Level Functionality - (695)
BaseBase Use of Multiple Resources with Duplicate Identifier - (694)
VariantVariant Use of Non-Canonical URL Paths for Authorization Decisions - (647)
BaseBase Use of NullPointerException Catch to Detect NULL Pointer Dereference - (395)
BaseBase Use of Obsolete Function - (477)
BaseBase Use of Out-of-range Pointer Offset - (823)
BaseBase Use of Password Hash Instead of Password for Authentication - (836)
BaseBase Use of Password Hash With Insufficient Computational Effort - (916)
BaseBase Use of Password System for Primary Authentication - (309)
VariantVariant Use of Path Manipulation Function without Maximum-sized Buffer - (785)
BaseBase Use of Pointer Subtraction to Determine Size - (469)
BaseBase Use of Potentially Dangerous Function - (676)
VariantVariant Use of RSA Algorithm without OAEP - (780)
BaseBase Use of Single-factor Authentication - (308)
VariantVariant Use of Singleton Pattern Without Synchronization in a Multithreaded Context - (543)
VariantVariant Use of sizeof() on a Pointer Type - (467)
VariantVariant Use of umask() with chmod-style Argument - (560)
BaseBase Use of Uninitialized Resource - (908)
VariantVariant Use of Uninitialized Variable - (457)
VariantVariant Use of Wrong Operator in String Comparison - (597)
ClassClass User Interface (UI) Misrepresentation of Critical Information - (451)
VariantVariant Using Referer Field for Authentication - (293)
BaseBase Variable Extraction Error - (621)
ClassClass Violation of Secure Design Principles - (657)
VariantVariant Weak Cryptography for Passwords - (261)
BaseBase Weak Password Recovery Mechanism for Forgotten Password - (640)
BaseBase Weak Password Requirements - (521)
VariantVariant Windows Hard Link - (65)
VariantVariant Windows Shortcut Following (.LNK) - (64)
BaseBase Wrap-around Error - (128)
BaseBase Write-what-where Condition - (123)
BaseBase XML Injection (aka Blind XPath Injection) - (91)