Browse by weakness (CWE)
Every CVE maps to a weakness class. Pick one to see all the findings of that kind and what the field said about them.
- CWE-22Path Traversal33
- CWE-78OS Command Injection31
- CWE-94Code Injection28
- CWE-502Deserialization of Untrusted Data23
- CWE-20Improper Input Validation19
- CWE-787Out-of-bounds Write18
- CWE-287Improper Authentication17
- CWE-306Missing Authentication for Critical Function13
- CWE-89SQL Injection11
- CWE-918Server-Side Request Forgery (SSRF)9
- CWE-119Improper Restriction of Memory Buffer9
- CWE-2849
- CWE-778
- CWE-2888
- CWE-434Unrestricted Upload of Dangerous File Type7
- CWE-416Use After Free7
- CWE-1216
- CWE-6936
- CWE-79Cross-site Scripting6
- CWE-190Integer Overflow6
- CWE-120Buffer Overflow5
- CWE-863Incorrect Authorization4
- CWE-200Exposure of Sensitive Information4
- CWE-269Improper Privilege Management4
- CWE-798Use of Hard-coded Credentials3
- CWE-9173
- CWE-362Race Condition2
- CWE-6102
- CWE-125Out-of-bounds Read2
- CWE-506Embedded Malicious Code2
- CWE-232
- CWE-611XML External Entity (XXE)2
- CWE-742
- CWE-522Insufficiently Protected Credentials2
- CWE-7072
- CWE-3212
- CWE-2642
- CWE-1221
- CWE-3051
- CWE-881
- CWE-361
- CWE-4941
- CWE-3471
- CWE-4251
- CWE-4731
- CWE-1971
- CWE-367Time-of-check Time-of-use (TOCTOU)1
- CWE-3261
- CWE-591
- CWE-6691
- CWE-13931
- CWE-911
- CWE-12201
- CWE-7821
- CWE-1841
- CWE-4511
- CWE-8221
- CWE-7491
- CWE-1931
- CWE-1341
- CWE-3451
- CWE-731
- CWE-3101
- CWE-3031
- CWE-1390Weak Authentication1
- CWE-7061
- CWE-251
- CWE-552Files Accessible to External Parties1
- CWE-862Missing Authorization1
- CWE-12871
- CWE-9131
- CWE-6971
- CWE-7551
- CWE-8431
- CWE-191
- CWE-8241
- CWE-3991
- CWE-2901
- CWE-3301
- CWE-732Incorrect Permission Assignment1