CWE-943
Improper Neutralization of Special Elements in Data Query Logic
The product generates a query intended to access or manipulate data in a data store such as a database, but it does not neutralize or incorrectly neutralizes special elements that can modify the intended logic of the query.
Official CWE-943 definition at MITREImpactr finds and proves weaknesses like CWE-943 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist