Page History

CERT C Secure Coding Standard

STR02-C. Sanitize data passed to complex subsystems

CERT C++ Secure Coding Standard

STR02-CPP. Sanitize data passed to complex subsystems

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="e2cc81fbca154701-73a5e621-4b734345-a6498eab-78aa3e1720e7c71bc5668e11"><ac:plain-text-body><![CDATA[

[ISO/IEC TR 24772:2010

http://www.aitcnet.org/isai/]

Injection [RST]

]]></ac:plain-text-body></ac:structured-macro>

MITRE CWE

CWE-116. Improper encoding or escaping of output

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="e940bc6b7e42d473-1beafd8a-420f4569-bb73a554-fe742e98ecfff7849244a350"><ac:plain-text-body><![CDATA[

[[OWASP 2005

AA. Bibliography#OWASP References#OWASP 05]]

]]></ac:plain-text-body></ac:structured-macro>

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="f1f52975a261e177-55a3f0a6-47a24c72-aca1816c-25b2e52582a34beeb2215f56"><ac:plain-text-body><![CDATA[

[[OWASP 2007

AA. Bibliography#OWASP References#OWASP 07]]

]]></ac:plain-text-body></ac:structured-macro>

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="43f6cdf8b8fb9d6f-202674d2-43064927-ac2cbdec-b01f23d761ca49c14f9deb57"><ac:plain-text-body><![CDATA[

[[OWASP 2008

AA. Bibliography#OWASP References#OWASP 08]]

[Testing for XML Injection (OWASP-DV-008)

https://www.owasp.org/index.php/Testing_for_XML_Injection_%28OWASP-DV-008%29]

]]></ac:plain-text-body></ac:structured-macro>

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="65cf08bbbcc7b66a-0ceae3ea-4e584823-bf07a2c9-9ec67d31f69f7ad2a68995f3"><ac:plain-text-body><![CDATA[

[[W3C 2008

AA. Bibliography#W3C References#W3C 08]]

4.4.3, Included If Validating

]]></ac:plain-text-body></ac:structured-macro>