CWE-181

Incorrect Behavior Order: Validate Before Filter

AI Translation Available

The product validates data before it has been filtered, which prevents the product from detecting data that becomes invalid after the filtering step.

Status

draft

Abstraction

variant

Affected Platforms

Extended Description

AI Translation

This can be used by an attacker to bypass the validation and launch attacks that expose weaknesses that would otherwise be prevented, such as injection.

Technical Details

AI Translation

Common Consequences

access control

Impacts

bypass protection mechanism

Potential Mitigations

Phases:

implementation architecture and design

Descriptions:

• Inputs should be decoded and canonicalized to the application's current internal representation before being filtered.

Functional Areas

protection mechanism

AI Generated Translation

Common Consequences

controllo degli accessi

Impacts

elusione del meccanismo di protezione

Potential Mitigations

Phases:

implementazione architettura e design

Descriptions:

• Gli input devono essere decodificati e canonicalizzati nella rappresentazione interna corrente dell'applicazione prima di essere filtrati.

Functional Areas

meccanismo di protezione

CWE-181

Common Consequences

Impacts

Potential Mitigations

Functional Areas

Common Consequences

Impacts

Potential Mitigations

Functional Areas

Iscriviti alla newsletter