CWE-794: Incomplete Filtering of Multiple Instances of Special Elements

VariantIncomplete

The product receives data from an upstream component, but does not filter all instances of a special element before sending it to a downstream component.

View on MITRE

Back to CWE Lookup

Extended Description

Incomplete filtering of this nature may be applied to: sequential elements (special elements that appear next to each other) or non-sequential elements (special elements that appear multiple times in different locations).

Technical Details

Structure: Simple

Applicable To

Languages

Platforms

Learn More

Find Related CVEs

Search for vulnerabilities that exploit CWE-794

CVE vs CWE: What's the Difference?

Understanding vulnerabilities vs weaknesses

Understanding CVSS Scoring

How vulnerability severity is measured

View Full MITRE Entry

Complete technical details and references