CWE - VIEW LIST: CWE-678: Composites (Draft 9)

Home > CWE List > VIEW LIST: CWE-678: Composites (Draft 9)

View the CWE List

CWE List
Full Dictionary View
Classification Tree
Reports

About
Sources
Process
Documents

Community
Related Activities
Discussion List
Research

News
Calendar
Free Newsletter

Compatibility
Program
Requirements
Declarations
Make a Declaration

Contact Us
Search the Site

Section Contents
CWE List
Full Dictionary View
Classification Tree
Reports
Other Items of Interest
Sources

(CWE-678)

View Definition

Key
- Weakness
- Base
- Variant
- Class
- Chain
- Composite
- Category
- View
- Deprecated

VIEW LIST: CWE-678: Composites (Draft 9)

View ID

Status: Draft

678 (View)

Objective

This view (slice) displays only composite weaknesses.

View Data

Filter Used: .//@Compound_Element_Structure='Composite'

	CWEs in this view		Total CWEs
Total	9	out of	695
Views	0	out of	14
Categories	0	out of	64
Weaknesses	0	out of	605
Compound_Elements	9	out of	12

Cross-Site Request Forgery (CSRF) - (352)

Insufficient Control of Filename for Include/Require Statement in PHP Program (aka 'PHP File Inclusion') - (98)

Permission Race Condition During Resource Copy - (689)

Session Fixation - (384)

Trusting Self-reported IP Address - (291)

Unbounded Transfer ('Classic Buffer Overflow') - (120)

UNIX Symbolic Link (Symlink) Following - (61)

Unrestricted File Upload - (434)

Untrusted Search Path - (426)

Page Last Updated: April 11, 2008


	CWE is sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is hosted by The MITRE Corporation. Copyright 2008, The MITRE Corporation. CWE and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us