OWASP Top Ten 2004 Category A1 - Unvalidated Input |
Category ID: 722 (Category) | Status: Incomplete |
Description Summary
Weaknesses in this category are related to the A1 category in the OWASP Top Ten 2004.
Nature | Type | ID | Name | View(s) this relationship pertains to |
---|---|---|---|---|
ParentOf | Weakness Class | 20 | Improper Input Validation | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Class | 77 | Improper Sanitization of Special Elements used in a Command ('Command Injection') | Weaknesses in OWASP Top Ten (2004)711 |
ParentOf | Weakness Base | 79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') | Weaknesses in OWASP Top Ten (2004)711 |
ParentOf | Weakness Base | 89 | Improper Sanitization of Special Elements used in an SQL Command ('SQL Injection') | Weaknesses in OWASP Top Ten (2004)711 |
ParentOf | Weakness Variant | 102 | Struts: Duplicate Validation Forms | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Variant | 103 | Struts: Incomplete validate() Method Definition | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Variant | 104 | Struts: Form Bean Does Not Extend Validation Class | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Variant | 106 | Struts: Plug-in Framework not in Use | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Variant | 109 | Struts: Validator Turned Off | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') | Weaknesses in OWASP Top Ten (2004)711 |
ParentOf | Weakness Base | 166 | Improper Handling of Missing Special Element | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 167 | Improper Handling of Additional Special Element | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 179 | Incorrect Behavior Order: Early Validation | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 180 | Incorrect Behavior Order: Validate Before Canonicalize | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 181 | Incorrect Behavior Order: Validate Before Filter | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 182 | Collapse of Data Into Unsafe Value | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 183 | Permissive Whitelist | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 425 | Direct Request ('Forced Browsing') | Weaknesses in OWASP Top Ten (2004)711 |
ParentOf | Weakness Base | 472 | External Control of Assumed-Immutable Web Parameter | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Variant | 601 | URL Redirection to Untrusted Site ('Open Redirect') | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | Weakness Base | 602 | Client-Side Enforcement of Server-Side Security | Weaknesses in OWASP Top Ten (2004) (primary)711 |
MemberOf | View | 711 | Weaknesses in OWASP Top Ten (2004) | Weaknesses in OWASP Top Ten (2004) (primary)711 |
OWASP. "A1 Unvalidated Input". 2007. <http://sourceforge.net/project/showfiles.php?group_id=64424&package_id=70827>. |