References

Bibliographic references cited across the CWE and CAPEC catalogs

All CWE CAPEC
REF-801 CWE
Toward Automated Detection of Logic Vulnerabilities in Web Applications
Viktoria Felmetsger, Ludovico Cavedon, Christopher Kruegel, Giovanni Vigna · 2010
1 citation(s)
REF-802 CWE
Designing a Framework Method for Secure Business Application Logic Integrity in e-Commerce Systems
Faisal Nabi · 2011
1 citation(s)
REF-806 CWE
Insufficient Process Validation
WASC
1 citation(s)
REF-811 CWE
Attacking Interoperability
Mark Dowd, Ryan Smith, David Dewey · 2009
1 citation(s)
REF-813 CWE
The CERT Oracle Coding Standard for Java
Fred Long, Dhruv Mohindra, Robert C. Seacord, Dean F. Sutherland, David Svoboda · 2011
REF-814 CWE
SEI CERT Oracle Coding Standard for Java : Rule 00. Input Validation and Data Sanitization (IDS)
The Software Engineering Institute
REF-815 CWE
SEI CERT Oracle Coding Standard for Java : Rule 01. Declarations and Initialization (DCL)
The Software Engineering Institute
REF-816 CWE
SEI CERT Oracle Coding Standard for Java : Rule 02. Expressions (EXP)
The Software Engineering Institute
REF-817 CWE
SEI CERT Oracle Coding Standard for Java : Rule 03. Numeric Types and Operations (NUM)
The Software Engineering Institute
REF-818 CWE
SEI CERT Oracle Coding Standard for Java : Rule 05. Object Orientation (OBJ)
The Software Engineering Institute
REF-819 CWE
SEI CERT Oracle Coding Standard for Java : Rule 06. Methods (MET)
The Software Engineering Institute
REF-820 CWE
SEI CERT Oracle Coding Standard for Java : Rule 07. Exceptional Behavior (ERR)
The Software Engineering Institute
REF-821 CWE
SEI CERT Oracle Coding Standard for Java : Rule 08. Visibility and Atomicity (VNA)
The Software Engineering Institute
REF-822 CWE
SEI CERT Oracle Coding Standard for Java : Rule 09. Locking (LCK)
The Software Engineering Institute
REF-823 CWE
SEI CERT Oracle Coding Standard for Java : Rule 10. Thread APIs (THI)
The Software Engineering Institute
REF-824 CWE
SEI CERT Oracle Coding Standard for Java : Rule 11. Thread Pools (TPS)
The Software Engineering Institute
REF-825 CWE
SEI CERT Oracle Coding Standard for Java : Rule 12. Thread-Safety Miscellaneous (TSM)
The Software Engineering Institute
REF-826 CWE
SEI CERT Oracle Coding Standard for Java : Rule 13. Input Output (FIO)
The Software Engineering Institute
REF-827 CWE
SEI CERT Oracle Coding Standard for Java : Rule 14. Serialization (SER)
The Software Engineering Institute
REF-828 CWE
SEI CERT Oracle Coding Standard for Java : Rule 15. Platform Security (SEC)
The Software Engineering Institute
REF-829 CWE
SEI CERT Oracle Coding Standard for Java : Rule 16. Runtime Environment (ENV)
The Software Engineering Institute
REF-830 CWE
SEI CERT Oracle Coding Standard for Java : Rule 49. Miscellaneous (MSC)
The Software Engineering Institute
REF-843 CWE
2011 CWE/SANS Top 25 Most Dangerous Software Errors
· 2011
REF-847 CWE
SEI CERT C++ Coding Standard
The Software Engineering Institute
REF-848 CWE
01. Preprocessor (PRE)
The Software Engineering Institute
REF-849 CWE
02. Declarations and Initialization (DCL)
CERT
REF-850 CWE
03. Expressions (EXP)
CERT
REF-851 CWE
04. Integers (INT)
CERT
REF-852 CWE
05. Floating Point Arithmetic (FLP)
CERT
REF-853 CWE
06. Arrays and the STL (ARR)
CERT
REF-854 CWE
07. Characters and Strings (STR)
CERT
REF-855 CWE
08. Memory Management (MEM)
CERT
REF-856 CWE
09. Input Output (FIO)
CERT
REF-857 CWE
10. Environment (ENV)
CERT
REF-858 CWE
11. Signals (SIG)
CERT
REF-859 CWE
Argument injection issues
Steven Christey
1 citation(s)
REF-861 CWE
12. Exceptions and Error Handling (ERR)
CERT
REF-862 CWE
13. Object Oriented Programming (OOP)
CERT
REF-863 CWE
14. Concurrency (CON)
CERT
REF-864 CWE
49. Miscellaneous (MSC)
CERT
REF-867 CWE
SQL Injection Prevention Cheat Sheet
OWASP
1 citation(s)
REF-868 CWE
SQL Injection Attacks by Example
Steven Friedl · 2007
1 citation(s)
REF-869 CWE
SQL Injection Cheat Sheet
Ferruh Mavituna · 2007
1 citation(s)
REF-870 CWE
The Database Hacker's Handbook: Defending Database Servers
David Litchfield, Chris Anley, John Heasman, Bill Grindlay · 2005
1 citation(s)
REF-871 CWE
The Oracle Hacker's Handbook: Hacking and Defending Oracle
David Litchfield · 2007
1 citation(s)
REF-872 CWE
SQL Injection
Microsoft · 2008
1 citation(s)
REF-873 CWE
SQL Injection Attack
Microsoft Security Vulnerability Research & Defense
1 citation(s)
REF-874 CWE
Giving SQL Injection the Respect it Deserves
Michael Howard · 2008
1 citation(s)
REF-875 CWE
Top 25 Series - Rank 2 - SQL Injection
Frank Kim · 2010
1 citation(s)
REF-879 CWE
Web Applications and LDAP Injection
SPI Dynamics
1 citation(s)
« 17 / 30 »