CWE-714 Categorie Detail

CWE-714

OWASP Top Ten 2007 Category A3 - Malicious File Execution
Obsolete
2008-09-09 +00:00
2023-06-29 +00:00
CWE Mitre.org
Notifications for a CWE
Stay informed of any changes for a specific CWE.
Notifications manage

Name: OWASP Top Ten 2007 Category A3 - Malicious File Execution

Weaknesses in this category are related to the A3 category in the OWASP Top Ten 2007.

CWE Members List

CWE-434: Unrestricted Upload of File with Dangerous Type Base

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Base

CWE-95: Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') Base

CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') Base

CWE Informations

Vulnerability Mapping Notes

Justification : This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves.
Comment : See member weaknesses of this category.

Submission

Name Organization Date Date release Version
CWE Content Team MITRE 2008-09-09 +00:00 2008-09-09 +00:00 1.0

Modifications

Name Organization Date Comment
CWE Content Team MITRE 2009-12-28 +00:00 updated Related_Attack_Patterns
CWE Content Team MITRE 2012-05-11 +00:00 updated Related_Attack_Patterns
CWE Content Team MITRE 2017-11-08 +00:00 updated Related_Attack_Patterns
CWE Content Team MITRE 2023-04-27 +00:00 updated Mapping_Notes
CWE Content Team MITRE 2023-06-29 +00:00 updated Mapping_Notes