CQE - CQE-9095: File Upload Control (Draft 0.9)

	Common Quality Enumeration A Community-Developed Dictionary of Quality Issues
Home \| CQE List \| About CQE
Search by ID:

CQE-9095: File Upload Control

File Upload Control

[an error occurred while processing this directive] Definition in a New Window

Practice ID: 9095

Maturity: Preliminary

Description

Description Summary

File Upload Control

Extended Description

Software unaware of file upload control incurs the risk of arbitrary code execution or other unexpected behaviors based on the type, extension, or other properties of the uploaded file.

Relationships

Nature	Type	ID	Name	View(s) this relationship pertains to View
CanPrecede	Co Consequence	9017	Arbitrary Code Execution	Default Graph (primary)9001
ParentOf	Is Issue	434	File Upload Improper Input Neutralization	Quality Issues Organized by Practices (primary)9002

Page Last Updated or Reviewed: October 01, 2017


	This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2006-2024, The MITRE Corporation. CQE, CWE, and the CQE logo are trademarks of The MITRE Corporation. Contact cqe@mitre.org for more information.	Privacy policy Terms of use Contact us

Common Quality Enumeration

CQE-9095: File Upload Control