CWE-SANS-Top-25/Insecure-interaction-between-components/CWE-78

From aldeid

Jump to navigation Jump to search

CWE-78: Failure to Preserve OS Command Structure (aka 'OS Command Injection')

Description

This attack consists of injecting commands on a form input.

Risk measurement

Weakness Prevalence	Medium
Remediation Cost	Medium
Attack Frequency	Often
Consequences	Code execution
Ease of Detection	Easy
Attacker Awareness	High

Comments

Talk:CWE-SANS-Top-25/Insecure-interaction-between-components/CWE-78

Retrieved from "https://www.aldeid.com/w/index.php?title=CWE-SANS-Top-25/Insecure-interaction-between-components/CWE-78&oldid=35643"

Share your opinion