| CWE-1032 |
OWASP Top Ten 2017 Category A6 - Security Misconfiguration |
|
|
| CWE-1031 |
OWASP Top Ten 2017 Category A5 - Broken Access Control |
|
|
| CWE-1030 |
OWASP Top Ten 2017 Category A4 - XML External Entities (XXE) |
|
|
| CWE-103 |
Struts: Incomplete validate() Method Definition |
|
|
| CWE-1029 |
OWASP Top Ten 2017 Category A3 - Sensitive Data Exposure |
|
|
| CWE-1028 |
OWASP Top Ten 2017 Category A2 - Broken Authentication |
|
|
| CWE-1027 |
OWASP Top Ten 2017 Category A1 - Injection |
|
|
| CWE-1025 |
Comparison Using Wrong Factors |
|
|
| CWE-1024 |
Comparison of Incompatible Types |
|
|
| CWE-1023 |
Incomplete Comparison with Missing Factors |
|
|
| CWE-1022 |
Use of Web Link to Untrusted Target with window.opener Access |
|
|
| CWE-1021 |
Improper Restriction of Rendered UI Layers or Frames |
|
|
| CWE-1020 |
Verify Message Integrity |
|
|
| CWE-102 |
Struts: Duplicate Validation Forms |
|
|
| CWE-1019 |
Validate Inputs |
|
|
| CWE-1018 |
Manage User Sessions |
|
|
| CWE-1017 |
Lock Computer |
|
|
| CWE-1016 |
Limit Exposure |
|
|
| CWE-1015 |
Limit Access |
|
|
| CWE-1014 |
Identify Actors |
|
|
