CWE-473: PHP External Variable Modification

VariantDraft

A PHP application does not properly protect against the modification of variables from external sources, such as query parameters or cookies. This can expose the application to numerous weaknesses that would not exist otherwise.

View on MITRE

Back to CWE Lookup

Technical Details

Structure: Simple

Applicable To

Languages

PHP

Platforms

Learn More

Find Related CVEs

Search for vulnerabilities that exploit CWE-473

CVE vs CWE: What's the Difference?

Understanding vulnerabilities vs weaknesses

Understanding CVSS Scoring

How vulnerability severity is measured

View Full MITRE Entry

Complete technical details and references