Common Weakness Enumeration (CWE)

1,006 CWEs

CWENameCVEsAbstractionLikelihoodDetails
CWE-1026CWE-10261--
CWE-102Struts: Duplicate Validation Forms1Variant-
CWE-455Non-exit on Failed Initialization1Base-
CWE-293Using Referer Field for Authentication1VariantHigh
CWE-1224Improper Restriction of Write-Once Bit Fields1Base-
CWE-355CWE-3551--
CWE-318Cleartext Storage of Sensitive Information in Executable1Variant-
CWE-1265Unintended Reentrant Invocation of Non-reentrant Code Via Nested Calls1Base-
CWE-263Password Aging with Long Expiration1BaseLow
CWE-314Cleartext Storage in the Registry1Variant-
CWE-50Path Equivalence: '//multiple/leading/slash'1Variant-
CWE-34Path Traversal: '....//'1Variant-
CWE-1253Incorrect Selection of Fuse Values1Base-
CWE-654Reliance on a Single Factor in a Security Decision1Base-
CWE-511Logic/Time Bomb1Base-
CWE-292DEPRECATED: Trusting Self-reported DNS Name1Variant-
CWE-570Expression is Always False1Base-
CWE-374Passing Mutable Objects to an Untrusted Method1BaseMedium
CWE-1051Initialization with Hard-Coded Network Resource Configuration Data1Base-
CWE-1055Multiple Inheritance from Concrete Classes1Base-
CWE-57Path Equivalence: 'fakedir/../realdir/filename'1Variant-
CWE-1106Insufficient Use of Symbolic Constants1Base-
CWE-556ASP.NET Misconfiguration: Use of Identity Impersonation1Variant-
CWE-154Improper Neutralization of Variable Name Delimiters1Variant-
CWE-832Unlock of a Resource that is not Locked1Base-