logo

CWE-554 - ASP.NET Misconfiguration: Not Using Input Validation Framework

CWE-554

  • Abstraction:
  • Variant
  • Structure:
  • Simple
  • Status:
  • Draft
Weakness Name

ASP.NET Misconfiguration: Not Using Input Validation Framework

Description

The ASP.NET application does not use an input validation framework.

Common Consequences

Scope: Integrity

Impact: Unexpected State

Notes: Unchecked input leads to cross-site scripting, process control, and SQL injection vulnerabilities, among others.

Related Weaknesses
  • Release Date:
  • 2006-07-19
  • Latest Modification Date:
  • 2023-06-29

Free security scan for your website