Category

Injection Attacks

Security vulnerabilities and automated fixes for injection attacks issues

Injection vulnerabilities occur when untrusted data is sent to an interpreter as part of a command or query. Beyond SQL and OS command injection, this category includes LDAP injection, XML injection, expression language injection, and template injection across various frameworks.

Related CWEs

CWE-74CWE-90CWE-91CWE-917

Affected Languages

PythonJavaPHPNode.jsRubyGo

No posts yet in this category.

Browse all posts