CAPEC Related Weakness
Command Line Execution through SQL Injection
CWE-20Improper Input Validation
CWE-74Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CWE-114Process Control
Command Delimiters
CWE-77Improper Neutralization of Special Elements used in a Command ('Command Injection')
CWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-93Improper Neutralization of CRLF Sequences ('CRLF Injection')
CWE-138Improper Neutralization of Special Elements
CWE-140Improper Neutralization of Delimiters
CWE-146Improper Neutralization of Expression/Command Delimiters
CWE-154Improper Neutralization of Variable Name Delimiters
CWE-157Failure to Sanitize Paired Delimiters
CWE-184Incomplete Blacklist
CWE-185Incorrect Regular Expression
CWE-697Insufficient Comparison
CWE-713
Exploiting Multiple Input Interpretation Layers
CWE-20Improper Input Validation
CWE-74Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CWE-77Improper Neutralization of Special Elements used in a Command ('Command Injection')
CWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-171
CWE-179Incorrect Behavior Order: Early Validation
CWE-181Incorrect Behavior Order: Validate Before Filter
CWE-183Permissive Whitelist
CWE-184Incomplete Blacklist
CWE-697Insufficient Comparison
CWE-707Improper Enforcement of Message or Data Structure
Argument Injection
CWE-77Improper Neutralization of Special Elements used in a Command ('Command Injection')
CWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-146Improper Neutralization of Expression/Command Delimiters
CWE-184Incomplete Blacklist
CWE-185Incorrect Regular Expression
CWE-697Insufficient Comparison
CWE-713
OS Command Injection
CWE-20Improper Input Validation
CWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-88Argument Injection or Modification
CWE-697Insufficient Comparison
CWE-713
Back to Top