Test cases - NIST Software Assurance Reference Dataset

Displaying test cases 287701 - 287725 of 291048 in total

CWE-90

160327-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
CWE-90

160326-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
CWE-90

160325-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
CWE-90

160324-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
CWE-90

160323-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
CWE-90

160322-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
CWE-90

160321-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
CWE-90

160320-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
CWE-90

160319-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
160318-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
160317-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
160316-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
160315-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
160314-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
160313-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
160312-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
160311-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
160310-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
160309-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
160308-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : use of sprintf via a %s with simple quote
160307-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
160306-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : interpretation with simple quote
160305-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
160304-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of the function htmlentities. Sanitizes the query but has a high chance to produce unexpected results construction : concatenation with simple quote
160303-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use exec to execute the script /tmp/tainted.php and store the output in $tainted sanitize : use of floatval construction : use of sprintf via a %u with simple quote

Results per page