Read Time:25 Second

Description

When an application does not use an input validation framework such as the Struts Validator, there is a greater risk of introducing weaknesses related to insufficient input validation.

Modes of Introduction:

– Implementation

 

 

Related Weaknesses

CWE-1173
CWE-20

 

Consequences

Integrity: Unexpected State

 

Potential Mitigations

Phase: Architecture and Design

Description: 

Use an input validation framework such as Struts.

Phase: Architecture and Design

Description: 

Use an input validation framework such as Struts.

Phase: Implementation

Description: 

Phase: Implementation

Description: 

CVE References