CWE-1072 – Data Resource Access without Use of Connection Pooling
Description The software accesses a data resource through a database without using a connection pooling capability. Modes of Introduction: Related Weaknesses CWE-405 ...
CWE-1071 – Empty Code Block
Description The source code contains a block that does not contain any code, i.e., the block is empty. Modes of Introduction: Related Weaknesses...
CWE-1070 – Serializable Data Element Containing non-Serializable Item Elements
Description The software contains a serializable, storable data element such as a field or member, but the data element contains member elements that are not...
CWE-107 – Struts: Unused Validation Form
Description An unused validation form indicates that validation logic is not up-to-date. It is easy for developers to forget to update validation logic when they...
CWE-1069 – Empty Exception Block
Description An invokable code block contains an exception handling block that does not contain any code, i.e. is empty. Modes of Introduction: Related...
CWE-1068 – Inconsistency Between Implementation and Documented Design
Description The implementation of the product is not consistent with the design as described within the relevant documentation. Modes of Introduction: - Implementation ...
CWE-1067 – Excessive Execution of Sequential Searches of Data Resource
Description The software contains a data query against an SQL table or view that is configured in a way that does not utilize an index...
CWE-1066 – Missing Serialization Control Element
Description The software contains a serializable data element that does not have an associated serialization method. Modes of Introduction: Related Weaknesses CWE-710 ...
CWE-1065 – Runtime Resource Management Control Element in a Component Built to Run on Application Servers
Description The application uses deployed components from application servers, but it also uses low-level functions/methods for management of resources, instead of the API provided by...
CWE-1064 – Invokable Control Element with Signature Containing an Excessive Number of Parameters
Description The software contains a function, subroutine, or method whose signature has an unnecessarily large number of parameters/arguments. Modes of Introduction: Related Weaknesses...
