CWE-1041 – Use of Redundant Code
Description The software has multiple functions, methods, procedures, macros, etc. that contain the same code. Modes of Introduction: Related Weaknesses CWE-710 Consequences...
CWE-104 – Struts: Form Bean Does Not Extend Validation Class
Description If a form bean does not extend an ActionForm subclass of the Validator framework, it can expose the application to other weaknesses related to...
CWE-1039 – Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations
Description The product uses an automated mechanism such as machine learning to recognize complex data inputs (e.g. image or audio) as a particular concept or...
CWE-1038 – Insecure Automated Optimizations
Description The product uses a mechanism that automatically optimizes code, e.g. to improve a characteristic such as performance, but the optimizations can have an unintended...
CWE-1037 – Processor Optimization Removal or Modification of Security-critical Code
Description The developer builds a security-critical protection mechanism into the software, but the processor optimizes the execution of the program such that the mechanism is...
CWE-103 – Struts: Incomplete validate() Method Definition
Description The application has a validator form that either does not define a validate() method, or defines a validate() method but does not call super.validate()....
CWE-1025 – Comparison Using Wrong Factors
Description The code performs a comparison between two entities, but the comparison examines the wrong factors or characteristics of the entities, which can lead to...
CWE-1024 – Comparison of Incompatible Types
Description The software performs a comparison between two entities, but the entities are of different, incompatible types that cannot be guaranteed to provide correct results...
CWE-1023 – Incomplete Comparison with Missing Factors
Description The software performs a comparison between entities that must consider multiple factors or characteristics of each entity, but the comparison does not include one...
CWE-1022 – Use of Web Link to Untrusted Target with window.opener Access
Description The web application produces links to untrusted external sites outside of its sphere of control, but it does not properly prevent the external site...