[Forgot Password]
Login  Register Subscribe

24436

 
 

131815

 
 

115228

 
 

909

 
 

90122

 
 

140

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 909 Download | Alert*

The software does not verify, or incorrectly verifies, the cryptographic signature for data.

The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program.

The software constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

The software constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

Software security is not security software. Here we're concerned with topics like authentication, access control, confidentiality, cryptography, and privilege management.

Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Weaknesses in this category are related to errors in the management of cryptographic keys.

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   90

© SecPod Technologies