VariantDraft

CWE-235Improper Handling of Extra Parameters

Category: other

Description

The product does not handle or incorrectly handles when the number of parameters, fields, or arguments with the same name exceeds the expected amount.

Common consequences· 1

  • Integrity — Unexpected State

Related CAPEC attack patterns· 1

CAPEC-460

References

  1. https://cwe.mitre.org/data/definitions/235.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternHTTP Parameter Pollution (HPP)capec-460100%live

(incoming)1

TypeTargetConfidenceTier
VulnerabilityCVE-2026-27851cve-2026-278510%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Handling of Parameters
CWE
Improper Handling of Undefined Parameters
CWE
Improper Handling of Extra Values
CWE
Improper Handling of Values
CWE
Improper Handling of Undefined Values
CWE
Improper Handling of Missing Values
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.