CWE-473 - PHP External Variable Modification

CWE-473

Abstraction:
Variant

Structure:
Simple

Status:
Draft

Weakness Name: PHP External Variable Modification

Description: A PHP application does not properly protect against the modification of variables from external sources, such as query parameters or cookies. This can expose the application to numerous weaknesses that would not exist otherwise.

Common Consequences: Scope: Integrity
Impact: Modify Application Data

Related Weaknesses

CWE-98Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')High

CWE-471Modification of Assumed-Immutable Data (MAID)

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Free security scan for your website

Don't show website scan report rating on the leaderboard