codeql/cwe-sink.csv at e6d29af5a4c0c83e2a9d45a608a541ce1ec71ef4 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00

Files

Jami Cogswell 1d39402c98 Java: remove url-open-stream from cwe-sink csv; this removes CWE-036 from the framework coverage report

2023-05-03 10:12:12 -04:00

239 B

Raw Blame History

1	CWE	Sink identifier	Label
2	CWE‑089	sql	SQL injection
3	CWE‑022	create-file	Path injection
4	CWE‑094	bean-validation	Code injection
5	CWE‑319	open-url	Cleartext transmission
6	CWE‑079	xss	Cross-site scripting
7	CWE‑090	ldap	LDAP injection