Download

Alert Tag: CWE-20

Alert Tags > CWE-20

https://cwe.mitre.org/data/definitions/20.html

All of the alerts which use this tag:
ID Alert Status Risk Type
10026 HTTP Parameter Override beta Medium Passive
10030 User Controllable Charset release Informational Passive
10031 User Controllable HTML Element Attribute (Potential XSS) release Informational Passive
10043 User Controllable JavaScript Event (XSS) release Informational Passive
10051 Relative Path Confusion beta Medium Active
10107 Httpoxy - Proxy Header Misuse beta High Active
20014 HTTP Parameter Pollution beta Informational Active
20017 Source Code Disclosure - CVE-2012-1823 release High Active
20018 Remote Code Execution - CVE-2012-1823 release High Active
100018 Relative Path Overwrite alpha Medium Script Passive
100044-1 Suspicious Input Transformation - Quote Consumption alpha High Script Active
100044-2 Suspicious Input Transformation - Arithmetic Evaluation alpha High Script Active
100044-3 Suspicious Input Transformation - Expression Evaluation alpha High Script Active
100044-4 Suspicious Input Transformation - Template Evaluation alpha High Script Active
100044-5 Suspicious Input Transformation - EL Evaluation alpha High Script Active
100044-6 Suspicious Input Transformation - Unicode Normalisation alpha High Script Active
100044-7 Suspicious Input Transformation - URL Decoding Error alpha High Script Active
100044-8 Suspicious Input Transformation - Unicode Byte Truncation alpha High Script Active
100044-9 Suspicious Input Transformation - Unicode Case Conversion alpha High Script Active
100044-10 Suspicious Input Transformation - Unicode Combining Diacritic alpha High Script Active