Improper input validation
From Wikipedia, the free encyclopedia
Improper input validation[1] or unchecked user input is a type of vulnerability in computer software that may be used for security exploits.[2] This vulnerability is caused when "[t]he product does not validate or incorrectly validates input that can affect the control flow or data flow of a program."[1]
Examples
See also
- Input validation – Process of ensuring computer data is both correct and useful
- Common Weakness Enumeration – Catalog of software weaknesses and vulnerabilities (CWE)
