CWE-158
Improper Neutralization of Null Byte or NUL Character
The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes NUL characters or null bytes when they are sent to a downstream component.
Official CWE-158 definition at MITREImpactr finds and proves weaknesses like CWE-158 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist