Download

Alert Tag: CWE-94

Alert Tags > CWE-94

https://cwe.mitre.org/data/definitions/94.html

All of the alerts which use this tag:
ID Alert Status Risk Type
90019-1 Server Side Code Injection - PHP Code Injection release High Active
90019-2 Server Side Code Injection - ASP Code Injection release High Active
210018-1 eval() from storage/referrer taint alpha High Tool
210018-2 Function() from storage/referrer taint alpha High Tool
210018-3 Function.apply() from storage/referrer taint alpha High Tool
210018-4 setTimeout(string) from storage/referrer taint alpha High Tool
210018-5 setInterval(string) from storage/referrer taint alpha High Tool
220003-1 Avoid string-based timers alpha High Tool
220003-2 Avoid execScript dynamic execution alpha High Tool
220003-3 Avoid eval with string literals alpha High Tool
220003-4 Avoid Function constructor with strings alpha High Tool
220003-5 DOM-based JavaScript Injection (taint flow) alpha High Tool
220005-1 Dynamic template compilation alpha High Tool
220005-2 Template output injected into DOM alpha High Tool
220005-3 Review Vue v-html template usage alpha High Tool
220005-4 Template injection (taint flow) alpha High Tool
220005-5 React dangerouslySetInnerHTML taint flow alpha High Tool
220005-6 Lit unsafeHTML taint flow alpha High Tool