|
CWE-261
|
Weak Encoding for Password
|
|
CWE-262
|
Not Using Password Aging
|
|
CWE-263
|
Password Aging with Long Expiration
|
|
CWE-308
|
Use of Single-factor Authentication
|
|
CWE-309
|
Use of Password System for Primary Authentication
|
|
CWE-521
|
Weak Password Requirements
|
|
CWE-654
|
Reliance on a Single Factor in a Security Decision
|
|
CWE-719
|
OWASP Top Ten 2007 Category A8 - Insecure Cryptographic Storage
|
|
CWE-916
|
Use of Password Hash With Insufficient Computational Effort
|