OWASP Top Ten 2007 Category A3 - Malicious File Execution |
Category ID: 714 (Category) | Status: Incomplete |
Description Summary
Weaknesses in this category are related to the A3 category in the OWASP Top Ten 2007.
Nature | Type | ID | Name | View(s) this relationship pertains to |
---|---|---|---|---|
ParentOf | Weakness Base | 78 | Improper Sanitization of Special Elements used in an OS Command ('OS Command Injection') | Weaknesses in OWASP Top Ten (2007) (primary)629 |
ParentOf | Weakness Base | 95 | Improper Sanitization of Directives in Dynamically Evaluated Code ('Eval Injection') | Weaknesses in OWASP Top Ten (2007) (primary)629 |
ParentOf | Weakness Base | 98 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP File Inclusion') | Weaknesses in OWASP Top Ten (2007) (primary)629 |
ParentOf | Weakness Base | 434 | Unrestricted Upload of File with Dangerous Type | Weaknesses in OWASP Top Ten (2007) (primary)629 |
MemberOf | View | 629 | Weaknesses in OWASP Top Ten (2007) | Weaknesses in OWASP Top Ten (2007) (primary)629 |
CAPEC-ID | Attack Pattern Name | (CAPEC Version: 1.4) |
---|---|---|
35 | Leverage Executable Code in Nonexecutable Files |