CWE-75 - Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

CWE-75

Abstraction:
Class

Structure:
Simple

Status:
Draft

Weakness Name: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

Description: The product does not adequately filter user-controlled input for special elements with control implications.

Common Consequences: Scope: Integrity, Confidentiality, Availability
Impact: Modify Application Data, Execute Unauthorized Code or Commands

Related Weaknesses: CWE-74Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')High

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Free security scan for your website

Don't show website scan report rating on the leaderboard