CSURFACE
THREAT SENSOR
Home
Analytics
News
About
Tools
Constellation
Libraries
CWE
CAPEC
MITRE ATT&CK
MITRE D3FEND
OWASP Top 10
Ransomware Groups
References
Support
EN
|
PT
References
Bibliographic references cited across the CWE and CAPEC catalogs
All
CWE
CAPEC
REF-783
CWE
Secure Coding in C and C++
Robert C. Seacord · 2006
1 citation(s)
REF-786
CWE
Injection-safe templating languages
Jim Manico · 2010
1 citation(s)
REF-787
CWE
Can we please stop saying that XSS is boring and easy to fix!
Dinis Cruz · 2010
1 citation(s)
REF-788
CWE
Canoe: XSS prevention via context-aware output encoding
Ivan Ristic · 2010
1 citation(s)
REF-789
CWE
What is the Future of Automated XSS Defense Tools?
Jim Manico · 2011
1 citation(s)
REF-795
CWE
Business Logic Flaws and Yahoo Games
Jeremiah Grossman · 2006
1 citation(s)
REF-796
CWE
Seven Business Logic Flaws That Put Your Website At Risk
Jeremiah Grossman · 2007
1 citation(s)
REF-797
CWE
Business Logic Flaws
WhiteHat Security
1 citation(s)
REF-798
CWE
Abuse of Functionality
WASC
REF-799
CWE
Defying Logic: Theory, Design, and Implementation of Complex Systems for Testing Application Logic
Rafal Los, Prajakta Jagdale · 2011
1 citation(s)
REF-801
CWE
Toward Automated Detection of Logic Vulnerabilities in Web Applications
Viktoria Felmetsger, Ludovico Cavedon, Christopher Kruegel, Giovanni Vigna · 2010
1 citation(s)
REF-802
CWE
Designing a Framework Method for Secure Business Application Logic Integrity in e-Commerce Systems
Faisal Nabi · 2011
1 citation(s)
REF-806
CWE
Insufficient Process Validation
WASC
1 citation(s)
REF-811
CWE
Attacking Interoperability
Mark Dowd, Ryan Smith, David Dewey · 2009
1 citation(s)
REF-813
CWE
The CERT Oracle Coding Standard for Java
Fred Long, Dhruv Mohindra, Robert C. Seacord, Dean F. Sutherland, David Svoboda · 2011
REF-814
CWE
SEI CERT Oracle Coding Standard for Java : Rule 00. Input Validation and Data Sanitization (IDS)
The Software Engineering Institute
REF-815
CWE
SEI CERT Oracle Coding Standard for Java : Rule 01. Declarations and Initialization (DCL)
The Software Engineering Institute
REF-816
CWE
SEI CERT Oracle Coding Standard for Java : Rule 02. Expressions (EXP)
The Software Engineering Institute
REF-817
CWE
SEI CERT Oracle Coding Standard for Java : Rule 03. Numeric Types and Operations (NUM)
The Software Engineering Institute
REF-818
CWE
SEI CERT Oracle Coding Standard for Java : Rule 05. Object Orientation (OBJ)
The Software Engineering Institute
REF-819
CWE
SEI CERT Oracle Coding Standard for Java : Rule 06. Methods (MET)
The Software Engineering Institute
REF-820
CWE
SEI CERT Oracle Coding Standard for Java : Rule 07. Exceptional Behavior (ERR)
The Software Engineering Institute
REF-821
CWE
SEI CERT Oracle Coding Standard for Java : Rule 08. Visibility and Atomicity (VNA)
The Software Engineering Institute
REF-822
CWE
SEI CERT Oracle Coding Standard for Java : Rule 09. Locking (LCK)
The Software Engineering Institute
REF-823
CWE
SEI CERT Oracle Coding Standard for Java : Rule 10. Thread APIs (THI)
The Software Engineering Institute
REF-824
CWE
SEI CERT Oracle Coding Standard for Java : Rule 11. Thread Pools (TPS)
The Software Engineering Institute
REF-825
CWE
SEI CERT Oracle Coding Standard for Java : Rule 12. Thread-Safety Miscellaneous (TSM)
The Software Engineering Institute
REF-826
CWE
SEI CERT Oracle Coding Standard for Java : Rule 13. Input Output (FIO)
The Software Engineering Institute
REF-827
CWE
SEI CERT Oracle Coding Standard for Java : Rule 14. Serialization (SER)
The Software Engineering Institute
REF-828
CWE
SEI CERT Oracle Coding Standard for Java : Rule 15. Platform Security (SEC)
The Software Engineering Institute
REF-829
CWE
SEI CERT Oracle Coding Standard for Java : Rule 16. Runtime Environment (ENV)
The Software Engineering Institute
REF-830
CWE
SEI CERT Oracle Coding Standard for Java : Rule 49. Miscellaneous (MSC)
The Software Engineering Institute
REF-843
CWE
2011 CWE/SANS Top 25 Most Dangerous Software Errors
· 2011
REF-847
CWE
SEI CERT C++ Coding Standard
The Software Engineering Institute
REF-848
CWE
01. Preprocessor (PRE)
The Software Engineering Institute
REF-849
CWE
02. Declarations and Initialization (DCL)
CERT
REF-850
CWE
03. Expressions (EXP)
CERT
REF-851
CWE
04. Integers (INT)
CERT
REF-852
CWE
05. Floating Point Arithmetic (FLP)
CERT
REF-853
CWE
06. Arrays and the STL (ARR)
CERT
REF-854
CWE
07. Characters and Strings (STR)
CERT
REF-855
CWE
08. Memory Management (MEM)
CERT
REF-856
CWE
09. Input Output (FIO)
CERT
REF-857
CWE
10. Environment (ENV)
CERT
REF-858
CWE
11. Signals (SIG)
CERT
REF-859
CWE
Argument injection issues
Steven Christey
1 citation(s)
REF-861
CWE
12. Exceptions and Error Handling (ERR)
CERT
REF-862
CWE
13. Object Oriented Programming (OOP)
CERT
REF-863
CWE
14. Concurrency (CON)
CERT
REF-864
CWE
49. Miscellaneous (MSC)
CERT
«
8 / 21
»