CWE-1083 – Data Access from Outside Expected Data Manager Component
Description The software is intended to manage data access through a particular data manager component such as a relational or non-SQL database, but it contains...
CWE-1084 – Invokable Control Element with Excessive File or Data Access Operations
Description A function or method contains too many operations that utilize a data manager or file resource. Modes of Introduction: Related Weaknesses CWE-405...
CWE-1048 – Invokable Control Element with Large Number of Outward Calls
Description The code contains callable control elements that contain an excessively large number of references to other application objects external to the context of the...
CWE-1049 – Excessive Data Query Operations in a Large Data Table
Description The software performs a data query with a large number of joins and sub-queries on a large data table. Modes of Introduction: ...
CWE-105 – Struts: Form Field Without Validator
Description The application has a form field that is not validated by a corresponding validation form, which can introduce other weaknesses related to insufficient input...
CWE-1050 – Excessive Platform Resource Consumption within a Loop
Description The software has a loop body or loop condition that contains a control element that directly or indirectly consumes platform resources, e.g. messaging, sessions,...
CWE-1051 – Initialization with Hard-Coded Network Resource Configuration Data
Description The software initializes data using hard-coded values that act as network resource identifiers. Modes of Introduction: Related Weaknesses CWE-665 Consequences Other:...
CWE-1052 – Excessive Use of Hard-Coded Literals in Initialization
Description The software initializes a data element using a hard-coded literal that is not a simple integer or static constant element. Modes of Introduction: ...
CWE-1053 – Missing Documentation for Design
Description The product does not have documentation that represents how it is designed. Modes of Introduction: Related Weaknesses CWE-1059 Consequences Potential...
CWE-1054 – Invocation of a Control Element at an Unnecessarily Deep Horizontal Layer
Description The code at one architectural layer invokes code that resides at a deeper layer than the adjacent layer, i.e., the invocation skips at least...