CWE弱点浏览
Common Weakness Enumeration(通用弱点枚举)- 软件和硬件安全弱点的社区开发列表
总弱点数
969
分类数
410
视图数
56
CWE弱点列表 共 969 条
| CWE ID | 名称 | 抽象级别 | 状态 | 操作 |
|---|---|---|---|---|
| CWE-608 | Struts: Non-private Field in ActionForm Class | Variant | Draft | 查看详情 |
| CWE-609 | Double-Checked Locking | Base | Draft | 查看详情 |
| CWE-610 | Externally Controlled Reference to a Resource in Another Sphere | Class | Draft | 查看详情 |
| CWE-611 | Improper Restriction of XML External Entity Reference | Base | Draft | 查看详情 |
| CWE-612 | Improper Authorization of Index Containing Sensitive Information | Base | Draft | 查看详情 |
| CWE-613 | Insufficient Session Expiration | Base | Incomplete | 查看详情 |
| CWE-614 | Sensitive Cookie in HTTPS Session Without 'Secure' Attribute | Variant | Draft | 查看详情 |
| CWE-615 | Inclusion of Sensitive Information in Source Code Comments | Variant | Incomplete | 查看详情 |
| CWE-616 | Incomplete Identification of Uploaded File Variables (PHP) | Variant | Incomplete | 查看详情 |
| CWE-617 | Reachable Assertion | Base | Draft | 查看详情 |
| CWE-618 | Exposed Unsafe ActiveX Method | Variant | Incomplete | 查看详情 |
| CWE-619 | Dangling Database Cursor ('Cursor Injection') | Base | Incomplete | 查看详情 |
| CWE-620 | Unverified Password Change | Base | Draft | 查看详情 |
| CWE-621 | Variable Extraction Error | Variant | Incomplete | 查看详情 |
| CWE-622 | Improper Validation of Function Hook Arguments | Variant | Draft | 查看详情 |
| CWE-623 | Unsafe ActiveX Control Marked Safe For Scripting | Variant | Draft | 查看详情 |
| CWE-624 | Executable Regular Expression Error | Base | Incomplete | 查看详情 |
| CWE-625 | Permissive Regular Expression | Base | Draft | 查看详情 |
| CWE-626 | Null Byte Interaction Error (Poison Null Byte) | Variant | Draft | 查看详情 |
| CWE-627 | Dynamic Variable Evaluation | Variant | Incomplete | 查看详情 |