Category-965: SFP Secondary Cluster: Insecure Session Management
ID: 965 Status: Incomplete
Summary
This category identifies Software Fault Patterns (SFPs) within the Insecure Session Management cluster.
Membership
| ID | NAME |
|---|---|
| CWE-488 | 对错误会话暴露数据元素 |
| CWE-524 | 通过缓存导致的信息暴露 |
| CWE-6 | J2EE误配置:会话ID长度不充分 |