Jump to content

Improper input validation

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Lambiam (talk | contribs) at 14:26, 5 March 2011 (avoid confusion (see talk)). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Improper input validation[1] or unchecked user input is a type of vulnerability in computer software that may be used for security exploits.[2]

Examples include:

References

  1. ^ "CWE-20: Improper Input Validation". Common Weakness Enumeration. MITRE. December 13, 2010. Retrieved February 22, 2011.
  2. ^ Erickson, Jon (2008). Hacking: the art of exploitation. No Starch Press Series. Safari Books Online. ISBN 9781593271442. {{cite book}}: Unknown parameter |Edition= ignored (|edition= suggested) (help)
  3. ^ "Network security advisories article: Mod_Security ASCIIZ byte POST bypass Vulnerability". Emagined Security. July 15, 2008. Retrieved February 22, 2011.
Stub icon

This software article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Improper_input_validation&oldid=417255468"