|
CWE-77
|
Improper Neutralization of Special Elements used in a Command ('Command Injection')
|
|
CWE-78
|
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
|
|
CWE-93
|
Improper Neutralization of CRLF Sequences ('CRLF Injection')
|
|
CWE-138
|
Improper Neutralization of Special Elements
|
|
CWE-140
|
Improper Neutralization of Delimiters
|
|
CWE-146
|
Improper Neutralization of Expression/Command Delimiters
|
|
CWE-154
|
Improper Neutralization of Variable Name Delimiters
|
|
CWE-157
|
Failure to Sanitize Paired Delimiters
|
|
CWE-184
|
Incomplete List of Disallowed Inputs
|
|
CWE-185
|
Incorrect Regular Expression
|
|
CWE-697
|
Incorrect Comparison
|
|
CWE-713
|
OWASP Top Ten 2007 Category A2 - Injection Flaws
|