Common Weakness Enumeration (CWE)

1,006 CWEs

CWENameCVEsAbstractionLikelihoodDetails
CWE-241Improper Handling of Unexpected Data Type33Base-
CWE-606Unchecked Input for Loop Condition33Base-
CWE-356Product UI does not Warn User of Unsafe Actions32Base-
CWE-226Sensitive Information in Resource Not Removed Before Reuse32Base-
CWE-691Insufficient Control Flow Management32Pillar-
CWE-1289Improper Validation of Unsafe Equivalence in Input32Base-
CWE-501Trust Boundary Violation31Base-
CWE-213Exposure of Sensitive Information Due to Incompatible Policies31Base-
CWE-233Improper Handling of Parameters31Base-
CWE-313Cleartext Storage in a File or on Disk30Variant-
CWE-176Improper Handling of Unicode Encoding30Variant-
CWE-540Inclusion of Sensitive Information in Source Code30Base-
CWE-286Incorrect User Management30Class-
CWE-488Exposure of Data Element to Wrong Session30Base-
CWE-282Improper Ownership Management29Class-
CWE-525Use of Web Browser Cache Containing Sensitive Information29Variant-
CWE-757Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')28Base-
CWE-115Misinterpretation of Input28Base-
CWE-1288Improper Validation of Consistency within Input28Base-
CWE-684Incorrect Provision of Specified Functionality27Class-
CWE-158Improper Neutralization of Null Byte or NUL Character27Variant-
CWE-27Path Traversal: 'dir/../../filename'27Variant-
CWE-41Improper Resolution of Path Equivalence27Base-
CWE-279Incorrect Execution-Assigned Permissions26Variant-
CWE-270Privilege Context Switching Error26Base-