logo

CWE-795 - Only Filtering Special Elements at a Specified Location

CWE-795

  • Abstraction:
  • Base
  • Structure:
  • Simple
  • Status:
  • Incomplete
Weakness Name

Only Filtering Special Elements at a Specified Location

Description

The product receives data from an upstream component, but only accounts for special elements at a specified location, thereby missing remaining special elements that may exist before sending it to a downstream component.

A filter might only account for instances of special elements when they occur: This may leave special elements in the data that did not match the filter position, but still may be dangerous.

Common Consequences

Scope: Integrity

Impact: Unexpected State

Related Weaknesses
  • Release Date:
  • 2009-12-28
  • Latest Modification Date:
  • 2023-06-29

Free security scan for your website