CWE-797 - Only Filtering Special Elements at an Absolute Position

CWE ID:

CWE-797

Abstraction:Variant
Structure:Simple
Status:Incomplete

Release Date:2009-12-28
Latest Modification Date:2023-06-29

Weakness Name

Only Filtering Special Elements at an Absolute Position

Description

The product receives data from an upstream component, but only accounts for special elements at an absolute position (e.g. "byte number 10"), thereby missing remaining special elements that may exist before sending it to a downstream component.

Common Consequences

Scope: Integrity

Impact: Unexpected State

Related Weaknesses

CWE-795Only Filtering Special Elements at a Specified Location

Top Security News

Latest CVE List

Common Alerts

InformationalGraphQL Server Implementation Identified
MediumCSP: style-src unsafe-hashes
InformationalUser Agent Fuzzer
Medium.htaccess Information Leak
InformationalInformation Disclosure - Sensitive Information in URL
HighCross-Domain Misconfiguration - Silverlight
HighNoSQL Injection - MongoDB
InformationalUser Controllable HTML Element Attribute (Potential XSS)
InformationalSec-Fetch-Dest Header is Missing
HighSource Code Disclosure - /WEB-INF Folder