CWE-994, SFP25 falls under the category of Tainted Input to Variable and is used to classify Software Fault Patterns (SFPs).

CWE-896: Tainted Input Cluster and Software Fault Patterns

CWE-15: SFP Secondary Cluster - Tainted Input to Variable

CWE-20: Improper Input Validation

CWE-454: External Initialization Vulnerability

CWE-496: Preventing Alteration of Private Class Members

CWE-502: Insecure Deserialization

CWE-566: Access Control Bypass Through User-Controlled SQL Primary Key

CWE-606: Improper Input Validation

CWE-616: Secure File Upload in PHP

Explore how CWE-994, SFP25 categorizes Software Fault Patterns. Discover related weaknesses like External Control of System, Improper Input Validation, and more.

CWE-994: Tainted Input to Variable - Software Fault Patterns

SFP25 falls under the cluster of Tainted Input to Variable and serves the purpose of categorizing Software Fault Patterns (SFPs).

CWE-994: Tainted Input to Variable (SFP25)

Summary

Is your System Free of Underlying Vulnerabilities?
Find Out Now

CWE-994: Tainted Input to Variable (SFP25)

Summary

Is your System Free of Underlying Vulnerabilities? Find Out Now

Is your System Free of Underlying Vulnerabilities?
Find Out Now