Statements (14)
| Predicate | Object |
|---|---|
| gptkbp:instance_of |
gptkb:CEO
|
| gptkbp:bfsLayer |
6
|
| gptkbp:bfsParent |
gptkb:CWE-23
|
| gptkbp:category |
CWE-800: Boundary Condition Errors
|
| gptkbp:example |
A web application that allows users to upload scripts that are executed on the server.
|
| https://www.w3.org/2000/01/rdf-schema#label |
CWE-866
|
| gptkbp:impact |
Potential for unauthorized actions or data exposure.
|
| gptkbp:is_described_as |
The software includes functionality that is controlled by an untrusted source.
|
| gptkbp:is_protected_by |
Implement strict access controls and monitoring.
Validate and sanitize all inputs from untrusted sources. |
| gptkbp:name |
Inclusion of Functionality from Untrusted Control Sphere
|
| gptkbp:related_to |
CWE-20: Improper Input Validation
CWE-284: Improper Access Control CWE-74: Injection |