Tag Archives: CWE- 794

CWE-794 – Incomplete Filtering of Multiple Instances of Special Elements

Read Time:15 Second

Description

The software receives data from an upstream component, but does not filter all instances of a special element before sending it to a downstream component.

Modes of Introduction:

– Implementation

Likelihood of Exploit:

 

Related Weaknesses

CWE-792

 

Consequences

Integrity: Unexpected State

 

Potential Mitigations

CVE References