Description Argument Injection or Modification is a specific case of attack, which belongs to Injection attacks familly. Modifying or injecting...

Abstract Writing outside the bounds of a block of allocated memory can corrupt data, crash the program, or cause the execution of malicious...

Abstract Allowing an attacker to control a function's format string may result in a buffer overflow. Description Format string vulnerabilities...

Abstract Writing unvalidated user input to log files can allow an attacker to forge log entries or inject malicious content into the...

Abstract Failure to enable validation when parsing XML gives an attacker the opportunity to supply malicious input. Description Most...

Abstract Executing commands from an untrusted source or in an untrusted environment can cause an application to execute malicious commands on...

Abstract Relying on proper string termination may result in a buffer overflow. Description String termination errors occur when: Data...

Abstract Multiple validation forms with the same name indicate that validation logic is not up-to-date. Description If two validation forms...

Abstract The validator form defines a validate() method but fails to call super.validate(). Descripti on The Struts Validator uses a form's...

Abstract All Struts forms should extend a Validator class. Description In order to use the Struts Validator, a form must extend one of the...