Paid content will be excluded from the download.
Matches : 909
The software uses externally-controlled format strings in printf-style functions, which can lead to buffer overflows or data representation problems.
The code has features that do not directly introduce a weakness or vulnerability, but indicate that the product has not been carefully developed or maintained.
The software does not enforce or incorrectly enforces that structured messages or data are well-formed before being read from an upstream component or sent to a downstream component.
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
Software that does not appropriately monitor or control resource consumption can lead to adverse system performance.
Weaknesses in this category are related to the improper management of time and state in an environment that supports simultaneous or near-simultaneous computation by multiple systems, processes, or threads.
The software specifies a regular expression in a way that causes data to be improperly matched or compared.
The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.