1. Home
  2. Weaknesses
  3. CWE-109

CWE-109: Struts: Validator Turned Off

ID CWE-109
Abstraction Variant
Structure Simple
Status Draft
Detail Web & Social
Automatic filtering via a Struts bean has been turned off, which disables the Struts Validator and custom validation logic. This exposes the application to other weaknesses related to insufficient input validation.

Modes of Introduction

Phase Note
Implementation

Applicable Platforms

Type Class Name Prevalence
Language Java

Relationships

View Weakness
# ID View Status # ID Name Abstraction Structure Status
CWE-1000 Research Concepts Draft CWE-1173 Improper Use of Validation Framework Base Simple Draft
CWE-700 Seven Pernicious Kingdoms Incomplete CWE-20 Improper Input Validation Class Simple Stable