CWE弱点浏览

Common Weakness Enumeration（通用弱点枚举）- 软件和硬件安全弱点的社区开发列表

总弱点数

969

分类数

410

视图数

56

列表视图树型视图

CWE弱点列表共 969 条

CWE ID	名称	抽象级别	状态	操作
CWE-524	Use of Cache Containing Sensitive Information	Base	Incomplete	查看详情
CWE-525	Use of Web Browser Cache Containing Sensitive Information	Variant	Incomplete	查看详情
CWE-526	Cleartext Storage of Sensitive Information in an Environment Variable	Variant	Incomplete	查看详情
CWE-527	Exposure of Version-Control Repository to an Unauthorized Control Sphere	Variant	Incomplete	查看详情
CWE-528	Exposure of Core Dump File to an Unauthorized Control Sphere	Variant	Draft	查看详情
CWE-529	Exposure of Access Control List Files to an Unauthorized Control Sphere	Variant	Incomplete	查看详情
CWE-530	Exposure of Backup File to an Unauthorized Control Sphere	Variant	Incomplete	查看详情
CWE-531	Inclusion of Sensitive Information in Test Code	Variant	Incomplete	查看详情
CWE-532	Insertion of Sensitive Information into Log File	Base	Incomplete	查看详情
CWE-533	DEPRECATED: Information Exposure Through Server Log Files	Variant	Deprecated	查看详情
CWE-534	DEPRECATED: Information Exposure Through Debug Log Files	Variant	Deprecated	查看详情
CWE-535	Exposure of Information Through Shell Error Message	Variant	Incomplete	查看详情
CWE-536	Servlet Runtime Error Message Containing Sensitive Information	Variant	Incomplete	查看详情
CWE-537	Java Runtime Error Message Containing Sensitive Information	Variant	Incomplete	查看详情
CWE-538	Insertion of Sensitive Information into Externally-Accessible File or Directory	Base	Draft	查看详情
CWE-539	Use of Persistent Cookies Containing Sensitive Information	Variant	Incomplete	查看详情
CWE-540	Inclusion of Sensitive Information in Source Code	Base	Incomplete	查看详情
CWE-541	Inclusion of Sensitive Information in an Include File	Variant	Incomplete	查看详情
CWE-542	DEPRECATED: Information Exposure Through Cleanup Log Files	Variant	Deprecated	查看详情
CWE-543	Use of Singleton Pattern Without Synchronization in a Multithreaded Context	Variant	Incomplete	查看详情