CQE - CQE-9003: SQL Command Execution (Draft 0.9)

	Common Quality Enumeration A Community-Developed Dictionary of Quality Issues
Home \| CQE List \| About CQE
Search by ID:

CQE-9003: SQL Command Execution

SQL Command Execution

[an error occurred while processing this directive] Definition in a New Window

Practice ID: 9003

Maturity: Preliminary

Description

Description Summary

SQL Command Control

Extended Description

Software unaware of SQL command control incurs the risk of unauthorized read, modify, and delete access to sensitive data.

Relationships

Nature	Type	ID	Name	View(s) this relationship pertains to View
CanPrecede	Co Consequence	9152	Unauthorized Access to Sensitive Information	Default Graph (primary)9001
ParentOf	Is Issue	89	SQL Injection Improper Input Neutralization	Quality Issues Organized by Practices (primary)9002

Page Last Updated or Reviewed: October 01, 2017


	This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2006-2024, The MITRE Corporation. CQE, CWE, and the CQE logo are trademarks of The MITRE Corporation. Contact cqe@mitre.org for more information.	Privacy policy Terms of use Contact us