CWE Catalog
969 weakness entries from MITRE Common Weakness Enumeration
CWE-1004Sensitive Cookie Without 'HttpOnly' Flag
VariantIncomplete
CWE-1007Insufficient Visual Distinction of Homoglyphs Presented to User
BaseIncomplete
CWE-102Struts: Duplicate Validation Forms
VariantIncomplete
CWE-1021Improper Restriction of Rendered UI Layers or Frames
BaseIncomplete
CWE-1022Use of Web Link to Untrusted Target with window.opener Access
VariantIncomplete
CWE-1023Incomplete Comparison with Missing Factors
ClassIncomplete
CWE-1024Comparison of Incompatible Types
BaseIncomplete
CWE-1025Comparison Using Wrong Factors
BaseIncomplete
CWE-103Struts: Incomplete validate() Method Definition
VariantDraft
CWE-1037Processor Optimization Removal or Modification of Security-critical Code
BaseIncomplete
CWE-1038Insecure Automated Optimizations
ClassDraft
CWE-1039Inadequate Detection or Handling of Adversarial Input Perturbations in Automated Recognition Mechanism
ClassIncomplete
CWE-104Struts: Form Bean Does Not Extend Validation Class
VariantDraft
CWE-1041Use of Redundant Code
BaseIncomplete
CWE-1042Static Member Data Element outside of a Singleton Class Element
VariantIncomplete
CWE-1043Data Element Aggregating an Excessively Large Number of Non-Primitive Elements
BaseIncomplete
CWE-1044Architecture with Number of Horizontal Layers Outside of Expected Range
BaseIncomplete
CWE-1045Parent Class with a Virtual Destructor and a Child Class without a Virtual Destructor
BaseIncomplete
CWE-1046Creation of Immutable Text Using String Concatenation
BaseIncomplete
CWE-1047Modules with Circular Dependencies
BaseIncomplete
CWE-1048Invokable Control Element with Large Number of Outward Calls
BaseIncomplete
CWE-1049Excessive Data Query Operations in a Large Data Table
BaseIncomplete
CWE-105Struts: Form Field Without Validator
VariantDraft
CWE-1050Excessive Platform Resource Consumption within a Loop
BaseIncomplete
CWE-1051Initialization with Hard-Coded Network Resource Configuration Data
BaseIncomplete
CWE-1052Excessive Use of Hard-Coded Literals in Initialization
BaseIncomplete
CWE-1053Missing Documentation for Design
BaseIncomplete
CWE-1054Invocation of a Control Element at an Unnecessarily Deep Horizontal Layer
BaseIncomplete
CWE-1055Multiple Inheritance from Concrete Classes
BaseIncomplete
CWE-1056Invokable Control Element with Variadic Parameters
BaseIncomplete
969 results found
1 / 33