CWE-1067 – Excessive Execution of Sequential Searches of Data Resource
Description The software contains a data query against an SQL table or view that is configured in a way that does not utilize an index...
CWE-1066 – Missing Serialization Control Element
Description The software contains a serializable data element that does not have an associated serialization method. Modes of Introduction: Related Weaknesses CWE-710 ...
CWE-1065 – Runtime Resource Management Control Element in a Component Built to Run on Application Servers
Description The application uses deployed components from application servers, but it also uses low-level functions/methods for management of resources, instead of the API provided by...
CWE-1064 – Invokable Control Element with Signature Containing an Excessive Number of Parameters
Description The software contains a function, subroutine, or method whose signature has an unnecessarily large number of parameters/arguments. Modes of Introduction: Related Weaknesses...
CWE-1063 – Creation of Class Instance within a Static Code Block
Description A static code block creates an instance of a class. Modes of Introduction: Related Weaknesses CWE-1176 Consequences Other: Reduce Performance ...
CWE-1062 – Parent Class with References to Child Class
Description The code has a parent class that contains references to a child class, its methods, or its members. Modes of Introduction: Related...
CWE-1061 – Insufficient Encapsulation
Description The software does not sufficiently hide the internal representation and implementation details of data or methods, which might allow external components or modules to...
CWE-1060 – Excessive Number of Inefficient Server-Side Data Accesses
Description The software performs too many data queries without using efficient data processing functionality such as stored procedures. Modes of Introduction: Related Weaknesses...
CWE-106 – Struts: Plug-in Framework not in Use
Description When an application does not use an input validation framework such as the Struts Validator, there is a greater risk of introducing weaknesses related...
CWE-1059 – Insufficient Technical Documentation
Description The product does not contain sufficient technical or engineering documentation (whether on paper or in electronic form) that contains descriptions of all the relevant...
