CWE-795 - Only Filtering Special Elements at a Specified Location

CWE-795

Abstraction:
Base

Structure:
Simple

Status:
Incomplete

Weakness Name: Only Filtering Special Elements at a Specified Location

Description: The product receives data from an upstream component, but only accounts for special elements at a specified location, thereby missing remaining special elements that may exist before sending it to a downstream component.
A filter might only account for instances of special elements when they occur: This may leave special elements in the data that did not match the filter position, but still may be dangerous.

Common Consequences: Scope: Integrity
Impact: Unexpected State

Related Weaknesses: CWE-791Incomplete Filtering of Special Elements

Release Date:
2009-12-28

Latest Modification Date:
2023-06-29

Free security scan for your website

Don't show website scan report rating on the leaderboard