References

Bibliographic references cited across the CWE and CAPEC catalogs

All CWE CAPEC
REF-783 CWE
Secure Coding in C and C++
Robert C. Seacord · 2006
1 citation(s)
REF-786 CWE
Injection-safe templating languages
Jim Manico · 2010
1 citation(s)
REF-787 CWE
Can we please stop saying that XSS is boring and easy to fix!
Dinis Cruz · 2010
1 citation(s)
REF-788 CWE
Canoe: XSS prevention via context-aware output encoding
Ivan Ristic · 2010
1 citation(s)
REF-789 CWE
What is the Future of Automated XSS Defense Tools?
Jim Manico · 2011
1 citation(s)
REF-795 CWE
Business Logic Flaws and Yahoo Games
Jeremiah Grossman · 2006
1 citation(s)
REF-796 CWE
Seven Business Logic Flaws That Put Your Website At Risk
Jeremiah Grossman · 2007
1 citation(s)
REF-797 CWE
Business Logic Flaws
WhiteHat Security
1 citation(s)
REF-798 CWE
Abuse of Functionality
WASC
REF-799 CWE
Defying Logic: Theory, Design, and Implementation of Complex Systems for Testing Application Logic
Rafal Los, Prajakta Jagdale · 2011
1 citation(s)
REF-801 CWE
Toward Automated Detection of Logic Vulnerabilities in Web Applications
Viktoria Felmetsger, Ludovico Cavedon, Christopher Kruegel, Giovanni Vigna · 2010
1 citation(s)
REF-802 CWE
Designing a Framework Method for Secure Business Application Logic Integrity in e-Commerce Systems
Faisal Nabi · 2011
1 citation(s)
REF-806 CWE
Insufficient Process Validation
WASC
1 citation(s)
REF-811 CWE
Attacking Interoperability
Mark Dowd, Ryan Smith, David Dewey · 2009
1 citation(s)
REF-813 CWE
The CERT Oracle Coding Standard for Java
Fred Long, Dhruv Mohindra, Robert C. Seacord, Dean F. Sutherland, David Svoboda · 2011
REF-814 CWE
SEI CERT Oracle Coding Standard for Java : Rule 00. Input Validation and Data Sanitization (IDS)
The Software Engineering Institute
REF-815 CWE
SEI CERT Oracle Coding Standard for Java : Rule 01. Declarations and Initialization (DCL)
The Software Engineering Institute
REF-816 CWE
SEI CERT Oracle Coding Standard for Java : Rule 02. Expressions (EXP)
The Software Engineering Institute
REF-817 CWE
SEI CERT Oracle Coding Standard for Java : Rule 03. Numeric Types and Operations (NUM)
The Software Engineering Institute
REF-818 CWE
SEI CERT Oracle Coding Standard for Java : Rule 05. Object Orientation (OBJ)
The Software Engineering Institute
REF-819 CWE
SEI CERT Oracle Coding Standard for Java : Rule 06. Methods (MET)
The Software Engineering Institute
REF-820 CWE
SEI CERT Oracle Coding Standard for Java : Rule 07. Exceptional Behavior (ERR)
The Software Engineering Institute
REF-821 CWE
SEI CERT Oracle Coding Standard for Java : Rule 08. Visibility and Atomicity (VNA)
The Software Engineering Institute
REF-822 CWE
SEI CERT Oracle Coding Standard for Java : Rule 09. Locking (LCK)
The Software Engineering Institute
REF-823 CWE
SEI CERT Oracle Coding Standard for Java : Rule 10. Thread APIs (THI)
The Software Engineering Institute
REF-824 CWE
SEI CERT Oracle Coding Standard for Java : Rule 11. Thread Pools (TPS)
The Software Engineering Institute
REF-825 CWE
SEI CERT Oracle Coding Standard for Java : Rule 12. Thread-Safety Miscellaneous (TSM)
The Software Engineering Institute
REF-826 CWE
SEI CERT Oracle Coding Standard for Java : Rule 13. Input Output (FIO)
The Software Engineering Institute
REF-827 CWE
SEI CERT Oracle Coding Standard for Java : Rule 14. Serialization (SER)
The Software Engineering Institute
REF-828 CWE
SEI CERT Oracle Coding Standard for Java : Rule 15. Platform Security (SEC)
The Software Engineering Institute
REF-829 CWE
SEI CERT Oracle Coding Standard for Java : Rule 16. Runtime Environment (ENV)
The Software Engineering Institute
REF-830 CWE
SEI CERT Oracle Coding Standard for Java : Rule 49. Miscellaneous (MSC)
The Software Engineering Institute
REF-843 CWE
2011 CWE/SANS Top 25 Most Dangerous Software Errors
· 2011
REF-847 CWE
SEI CERT C++ Coding Standard
The Software Engineering Institute
REF-848 CWE
01. Preprocessor (PRE)
The Software Engineering Institute
REF-849 CWE
02. Declarations and Initialization (DCL)
CERT
REF-850 CWE
03. Expressions (EXP)
CERT
REF-851 CWE
04. Integers (INT)
CERT
REF-852 CWE
05. Floating Point Arithmetic (FLP)
CERT
REF-853 CWE
06. Arrays and the STL (ARR)
CERT
REF-854 CWE
07. Characters and Strings (STR)
CERT
REF-855 CWE
08. Memory Management (MEM)
CERT
REF-856 CWE
09. Input Output (FIO)
CERT
REF-857 CWE
10. Environment (ENV)
CERT
REF-858 CWE
11. Signals (SIG)
CERT
REF-859 CWE
Argument injection issues
Steven Christey
1 citation(s)
REF-861 CWE
12. Exceptions and Error Handling (ERR)
CERT
REF-862 CWE
13. Object Oriented Programming (OOP)
CERT
REF-863 CWE
14. Concurrency (CON)
CERT
REF-864 CWE
49. Miscellaneous (MSC)
CERT
« 8 / 21 »