CWE-94 on ZAP /alerttags/cwe-94/ Recent content in CWE-94 on ZAP Hugo en-us Avoid eval with string literals /docs/alerts/220003-3/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220003-3/ <p>Detects dynamic execution of attacker-controlled strings in JavaScript sinks such as eval(), Function(), string-based timers, execScript, or script.text assignments. Exploiting these flows lets attackers execute arbitrary JS without relying on HTML injection.</p> <p>Generated by OWASP PTK SAST Module</p> Avoid execScript dynamic execution /docs/alerts/220003-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220003-2/ <p>Detects dynamic execution of attacker-controlled strings in JavaScript sinks such as eval(), Function(), string-based timers, execScript, or script.text assignments. Exploiting these flows lets attackers execute arbitrary JS without relying on HTML injection.</p> <p>Generated by OWASP PTK SAST Module</p> Avoid Function constructor with strings /docs/alerts/220003-4/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220003-4/ <p>Detects dynamic execution of attacker-controlled strings in JavaScript sinks such as eval(), Function(), string-based timers, execScript, or script.text assignments. Exploiting these flows lets attackers execute arbitrary JS without relying on HTML injection.</p> <p>Generated by OWASP PTK SAST Module</p> Avoid string-based timers /docs/alerts/220003-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220003-1/ <p>Detects dynamic execution of attacker-controlled strings in JavaScript sinks such as eval(), Function(), string-based timers, execScript, or script.text assignments. Exploiting these flows lets attackers execute arbitrary JS without relying on HTML injection.</p> <p>Generated by OWASP PTK SAST Module</p> DOM-based JavaScript Injection (taint flow) /docs/alerts/220003-5/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220003-5/ <p>Detects dynamic execution of attacker-controlled strings in JavaScript sinks such as eval(), Function(), string-based timers, execScript, or script.text assignments. Exploiting these flows lets attackers execute arbitrary JS without relying on HTML injection.</p> <p>Generated by OWASP PTK SAST Module</p> Dynamic template compilation /docs/alerts/220005-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220005-1/ <p>Detects dynamic client-side template compilation/rendering where attacker-controlled templates or outputs are injected into the DOM.</p> <p>Generated by OWASP PTK SAST Module</p> eval() from storage/referrer taint /docs/alerts/210018-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/210018-1/ <p>Storage/referrer taint reached eval().</p> <p>Generated by OWASP PTK IAST Module</p> Function.apply() from storage/referrer taint /docs/alerts/210018-3/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/210018-3/ <p>Storage/referrer taint reached Function.apply().</p> <p>Generated by OWASP PTK IAST Module</p> Function() from storage/referrer taint /docs/alerts/210018-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/210018-2/ <p>Storage/referrer taint reached Function constructor.</p> <p>Generated by OWASP PTK IAST Module</p> Lit unsafeHTML taint flow /docs/alerts/220005-6/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220005-6/ <p>Detects dynamic client-side template compilation/rendering where attacker-controlled templates or outputs are injected into the DOM.</p> <p>Generated by OWASP PTK SAST Module</p> React dangerouslySetInnerHTML taint flow /docs/alerts/220005-5/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220005-5/ <p>Detects dynamic client-side template compilation/rendering where attacker-controlled templates or outputs are injected into the DOM.</p> <p>Generated by OWASP PTK SAST Module</p> Review Vue v-html template usage /docs/alerts/220005-3/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220005-3/ <p>Detects dynamic client-side template compilation/rendering where attacker-controlled templates or outputs are injected into the DOM.</p> <p>Generated by OWASP PTK SAST Module</p> Server Side Code Injection - ASP Code Injection /docs/alerts/90019-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/90019-2/ <p>A code injection may be possible including custom code that will be evaluated by the scripting engine.</p> Server Side Code Injection - PHP Code Injection /docs/alerts/90019-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/90019-1/ <p>A code injection may be possible including custom code that will be evaluated by the scripting engine.</p> setInterval(string) from storage/referrer taint /docs/alerts/210018-5/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/210018-5/ <p>Storage/referrer taint reached setInterval(string).</p> <p>Generated by OWASP PTK IAST Module</p> setTimeout(string) from storage/referrer taint /docs/alerts/210018-4/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/210018-4/ <p>Storage/referrer taint reached setTimeout(string).</p> <p>Generated by OWASP PTK IAST Module</p> Template injection (taint flow) /docs/alerts/220005-4/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220005-4/ <p>Detects dynamic client-side template compilation/rendering where attacker-controlled templates or outputs are injected into the DOM.</p> <p>Generated by OWASP PTK SAST Module</p> Template output injected into DOM /docs/alerts/220005-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/220005-2/ <p>Detects dynamic client-side template compilation/rendering where attacker-controlled templates or outputs are injected into the DOM.</p> <p>Generated by OWASP PTK SAST Module</p>