VariantDraft
CWE-554ASP.NET Misconfiguration: Not Using Input Validation Framework
Category: config
Description
The ASP.NET application does not use an input validation framework.
Common consequences· 1
- Integrity — Unexpected StateUnchecked input leads to cross-site scripting, process control, and SQL injection vulnerabilities, among others.
Potential mitigations· 1
- [Architecture and Design]
References
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.