Test cases - NIST Software Assurance Reference Dataset

Displaying test cases 285676 - 285700 of 291048 in total

CWE-79

195795-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : Get a serialize string in POST and unserialize it sanitize : use of the function addslashes File : unsafe, use of untrusted data in the function setInterval
195147-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of settype_int File : unsafe, use of untrusted data in a quoted property value (CSS)
194881-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : execute a ls command using the function system, and put the last result in $tainted Uses a number_float_filter via filter_var function File : use of untrusted data in the body
193304-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of floatval File : unsafe, use of untrusted data in an tag name
192886-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : get the field UserData from the variable $_POST SANITIZE : use of rawurlencode File : use of untrusted data in the body
191237-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : reads the field UserData from the variable $_GET sanitize : cast in float File : use of untrusted data in a double quoted event handler in a script
190412-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : use fopen to read /tmp/tainted.txt and put the first line in $tainted Uses an email_filter via filter_var function File : use of untrusted data in a doubled quote attribute
CWE-601

187429-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : Get a serialize string in POST and unserialize it Uses a special_chars_filter via filter_var function construction : interpretation with simple quote
CWE-601

186635-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : get the UserData field of $_SESSION sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
CWE-601

185099-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : use fopen to read /tmp/tainted.txt and put the first line in $tainted sanitize : use of the function addslashes construction : concatenation with simple quote
CWE-601

184693-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted Uses a full_special_chars_filter via filter_var function construction : interpretation with simple quote
183521-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : get the $_GET['userData'] in an array sanitize : settype (float) construction : concatenation
CWE-90

180933-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : get the field userData from the variable $_GET via an object, which store it in a array SANITIZE : use of pg_escape_string construction : interpretation with simple quote
179223-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : get the field userData from the variable $_GET via an object SANITIZE : use preg_replace to keep only char, number and _ ,\, - construction : interpretation with simple quote
177977-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : get the field userData from the variable $_GET via an object Uses a number_float_filter via filter_var function construction : concatenation
CWE-89

172810-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : execute a ls command using the function system, and put the last result in $tainted Uses an email_filter via filter_var function construction : use of sprintf via a %s with simple quote
172618-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : check if there is only letters construction : use of sprintf via a %s with simple quote
CWE-91

171420-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : use shell_exec to cat /tmp/tainted.txt Flushes content of $sanitized if the filter email_filter is not applied construction : interpretation with simple quote
169135-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt SANITIZE : use in_array to check if $tainted is in the white list construction : use of sprintf via a %s with simple quote
168767-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of the function htmlspecialchars. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
CWE-78

167995-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : use proc_open to read /tmp/tainted.txt Uses a special_chars_filter via filter_var function construction : use of sprintf via a %s with simple quote
165806-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : Uses popen to read the file /tmp/tainted.txt using cat command SANITIZE : use preg_replace to keep only char, number and _ ,\, - construction : concatenation with simple quote
163644-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : reads the field UserData from the variable $_GET sanitize : use of floatval construction : use of sprintf via a %d
163462-v1.0.0

Added 10 years ago

candidate

good

Safe sample input : reads the field UserData from the variable $_GET sanitize : use of settype_int construction : use of sprintf via a %u with simple quote
CWE-91

157681-v1.0.0

Added 10 years ago

candidate

bad

Unsafe sample input : backticks interpretation, reading the file /tmp/tainted.txt sanitize : regular expression accepts everything construction : use of sprintf via a %s with simple quote

Results per page