SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security

View/Download Test Cases

Test Suite #95: apache-tomcat-5.5.13

Results: 37 test cases in 2 pages. Pages: 1 2
Go to page:

Select Test Case ID(up) Submission Date Language Type of Artifact Status Description Weakness Bad
Good
Mixed
1490032014-08-01JavaSource CodeCandidate apache-tomcat-5.5.13CWE-000: Not Determined
CWE-020: Improper Input Validation
CWE-022: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-200: Information Exposure
CWE-255: Credentials Management
CWE-264: Permissions, Privileges, and Access Controls
CWE-327: Use of a Broken or Risky Cryptographic Algorithm
CWE-391: Unchecked Error Condition
CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
CWE-732: Incorrect Permission Assignment for Critical Resource
Bad test case
1490022014-08-01JavaSource CodeCandidate CVE-2011-2204CWE-200: Information Exposure
Bad test case
1490012014-08-01JavaSource CodeCandidate CVE-2011-2526CWE-020: Improper Input Validation
Bad test case
1490002014-08-01JavaSource CodeCandidate CVE-2011-3190CWE-264: Permissions, Privileges, and Access Controls
Bad test case
1489992014-08-01JavaSource CodeCandidate CVE-2010-1157CWE-200: Information Exposure
Bad test case
1489982014-08-01JavaSource CodeCandidate CVE-2010-2227CWE-020: Improper Input Validation
Bad test case
1489972014-08-01JavaSource CodeCandidate CVE-2010-3718CWE-732: Incorrect Permission Assignment for Critical Resource
Bad test case
1489962014-08-01JavaSource CodeCandidate CVE-2011-0013CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
1489952014-08-01JavaSource CodeCandidate CVE-2006-7195CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
1489942014-08-01JavaSource CodeCandidate CVE-2006-7196 and CVE-2009-0781CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
1489932014-08-01JavaSource CodeCandidate CVE-2006-7197CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
Bad test case
1489922014-08-01JavaSource CodeCandidate CVE-2007-0450CWE-022: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Bad test case
1489912014-08-01JavaSource CodeCandidate CVE-2007-1355CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
1489902014-08-01JavaSource CodeCandidate CVE-2007-1858CWE-327: Use of a Broken or Risky Cryptographic Algorithm
Bad test case
1489892014-08-01JavaSource CodeCandidate CVE-2007-2449CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
1489882014-08-01JavaSource CodeCandidate CVE-2007-2450 and CVE-2007-3386CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
1489872014-08-01JavaSource CodeCandidate CVE-2007-3382CWE-200: Information Exposure
Bad test case
1489862014-08-01JavaSource CodeCandidate CVE-2007-3385CWE-200: Information Exposure
Bad test case
1489852014-08-01JavaSource CodeCandidate CVE-2007-5333CWE-200: Information Exposure
Bad test case
1489842014-08-01JavaSource CodeCandidate CVE-2007-5342CWE-264: Permissions, Privileges, and Access Controls
Bad test case
1 2
Total of selected test cases: 37
Total pages: 2