CWE-20 | Improper Input Validation |
CWE-75 | Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) |
CWE-93 | Improper Neutralization of CRLF Sequences ('CRLF Injection') |
CWE-96 | Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') |
CWE-116 | Improper Encoding or Escaping of Output |
CWE-117 | Improper Output Neutralization for Logs |
CWE-150 | Improper Neutralization of Escape, Meta, or Control Sequences |
CWE-221 | Information Loss or Omission |
CWE-276 | Incorrect Default Permissions |
CWE-279 | Incorrect Execution-Assigned Permissions |
CWE-713 | OWASP Top Ten 2007 Category A2 - Injection Flaws |