CWE IDs: C#

CS.SV.TAINTED.CALL.INDEX_ACCESS  Use of unvalidated integer as array index by function call

CS.SV.TAINTED.INDEX_ACCESS  Use of unvalidated integer as array index

CS.RESOURCE.AUTOBOXING  Autoboxing during operation inside a loop

CS.RESOURCE.UNBOXING  Unboxing during operation inside a loop

CS.ABV.EXCEPT  IndexOutOfRange exception while accessing array element

CS.SV.TAINTED.BINOP  Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.BINOP  Use of unvalidated integer in binary operation

CS.FRACTION.LOSS  Possible loss of fraction

CS.INFORMATION_EXPOSURE.ALL  Potential information exposure

CS.INFORMATION_EXPOSURE.ATTR  Potential security information exposure

CS.SQL.INJECT.LOCAL  SQL injection

CS.SV.TAINTED.ALLOC_SIZE  Use of unvalidated integer in memory allocation

CS.SV.TAINTED.CALL.GLOBAL  Use of unvalidated integer in an assignment operation

CS.SV.TAINTED.CALL.INDEX_ACCESS  Use of unvalidated integer as array index by function call

CS.SV.TAINTED.CALL.LOOP_BOUND  Use of unvalidated integer in loop condition through a function call

CS.SV.TAINTED.CALL.LOOP_BOUND.RESOURCE  Resource allocation in a loop is controlled by tainted data

CS.SV.TAINTED.DESERIALIZATION  Use of unvalidated integer during deserialization in object creation

CS.SV.TAINTED.FMTSTR  Use of unvalidated data in a format string

CS.SV.TAINTED.GLOBAL  Use of Unvalidated Integer in an Assignment Operation

CS.SV.TAINTED.INDEX_ACCESS  Use of unvalidated integer as array index

CS.SV.TAINTED.INJECTION  C# command injection

CS.SV.TAINTED.LOOP_BOUND  Use of unvalidated integer in loop condition

CS.SV.TAINTED.LOOP_BOUND.RESOURCE  Resource allocation in a loop controlled by tainted data

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.SV.USAGERULES.PERMISSIONS  Use of Privilege Elevation

CS.X509.REVOCATION  Certificate revocation list check is disabled.

CS.X509.VALIDATION  Validation of input is not done using AntiForgery.Validate

CS.RCA  Risky cryptographic algorithm used

CS.CSRF.ATTR.NOATTR  AntiForgery attribute should be added to class or method.

CS.CSRF.ATTR.POST  AntiForgery attribute should be added to class or method.

CS.CSRF.VALIDATE  Validation of 'POST request data access' is not done.

CS.CSRF.VSUK.CONSTASSIGN  A const string is assigned to property 'ViewStateUserKey'.

CS.CSRF.VSUK.NOASSIGN  Property 'ViewStateUserKey' is not set.

CS.DBZ.CONST  Division by a zero constant occurs

CS.DBZ.CONST.CALL  The value '0' is passed to function that can use this value as divisor

CS.DBZ.GENERAL  Division by zero might occur

CS.DBZ.ITERATOR  Division by zero might occur in a loop iterator

CS.ASSIGN.SELF  Assignment of expression to itself

CS.CTOR.VIRTUAL  Virtual member call in constructor

CS.HIDDEN.MEMBER.LOCAL.CLASS  Member is hidden by a local variable

CS.HIDDEN.MEMBER.LOCAL.STRUCT  Member is hidden by a local variable

CS.HIDDEN.MEMBER.PARAM.CLASS  Member is hidden by a parameter

CS.HIDDEN.MEMBER.PARAM.STRUCT  Member is hidden by a parameter

CS.IFACE.EMPTY  Empty interface

CS.LOOP.STR.CONCAT  String concatenation in a loop

CS.RESOURCE.AUTOBOXING  Autoboxing during operation inside a loop

CS.RESOURCE.LOOP  Object Allocation inside a loop

CS.RESOURCE.UNBOXING  Unboxing during operation inside a loop

CS.SV.TAINTED.CALL.LOOP_BOUND.RESOURCE  Resource allocation in a loop is controlled by tainted data

CS.SV.TAINTED.LOOP_BOUND.RESOURCE  Resource allocation in a loop controlled by tainted data

CS.RLK  Resource leak

CS.LOCRET.ARG  Function returns address of local variable

CS.LOCRET.GLOB  Function returns address of local variable

CS.LOCRET.RET  Function returns address of local variable

CS.UFR  Using freed resource

CS.SV.TAINTED.DLLPRELOAD  Use of unvalidated string to load a DLL

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.UNSAFE.DLLPRELOAD  Use of Attribute to Load a DLL

CS.UNSAFE.SEARCH_PATH  Use of search path to resolve absolute Path

CS.NRE.CHECK.CALL.MIGHT  Reference may be passed to function that can dereference it after it was positively checked for null

CS.NRE.CHECK.CALL.MUST  Reference will be passed to function that may dereference it after it was positively checked for null

CS.NRE.CHECK.MIGHT  Reference may be dereferenced after it was positively checked for null

CS.NRE.CHECK.MUST  Reference will be dereferenced after it was positively checked for null

CS.NRE.CONST.CALL  Constant null is passed to function that can dereference it

CS.NRE.CONST.DEREF  Constant null is dereferenced

CS.NRE.FUNC.CALL.MIGHT  Result of function that may return null may be passed to another function that may dereference it

CS.NRE.FUNC.CALL.MUST  Result of function that may return null will be passed to another function that may dereference it

CS.NRE.FUNC.MIGHT  Result of function that can return null may be dereferenced

CS.NRE.FUNC.MUST  Result of function that may return null will be dereferenced

CS.NRE.GEN.CALL.MIGHT  Null reference may be passed to function that may dereference it

CS.NRE.GEN.CALL.MUST  Null reference will be passed to function that may dereference it

CS.NRE.GEN.MIGHT  Null reference may be dereferenced

CS.NRE.GEN.MUST  Null reference will be dereferenced

CS.RNRE  Suspicious dereference before null check

CS.SV.TAINTED.DESERIALIZATION  Use of unvalidated integer during deserialization in object creation

CS.LOCRET.ARG  Function returns address of local variable

CS.LOCRET.GLOB  Function returns address of local variable

CS.LOCRET.RET  Function returns address of local variable

CS.CMP.VAL.NULL  Possible comparing value type expression with 'null'

CS.CONSTCOND.DO  'do' controlling expression is always true or always false

CS.CONSTCOND.IF  'if' controlling expression is always true or always false

CS.CONSTCOND.SWITCH  'switch' selector expression is constant

CS.CONSTCOND.TERNARY  Controlling condition in conditional expression is always true or always false

CS.CONSTCOND.WHILE  'while' controlling expression is always true or always false

CS.WRONGUSE.REFEQ  Improper usage of Object.ReferenceEquals

CS.XXE.DOCUMENT  Possible XML External Entity (XXE) Attack

CS.XXE.READER  Possible XML External Entity (XXE) Attack

CS.XXE.TEXT_READER  Possible XML External Entity (XXE) Attack

CS.LOCRET.ARG  Function returns address of local variable

CS.LOCRET.GLOB  Function returns address of local variable

CS.LOCRET.RET  Function returns address of local variable

CS.UNCHECKED.CAST  Object with type 'Object' is incorrectly cast to another object

CS.UNCHECKED.LOOPITER.CAST  Object with type 'Object' is incorrectly cast to another object in a loop

CS.WRONG.CAST  Object is incorrectly cast to another object

CS.WRONG.CAST.MIGHT  Object may be incorrectly cast to another object

CS.NPS  No permissions set for resource before accessing it

CS.RLK  Resource leak

CS.SV.TAINTED.INJECTION  C# command injection

CS.ABV.EXCEPT  IndexOutOfRange exception while accessing array element

CS.SV.TAINTED.INJECTION  C# command injection

CS.HCC  Use of hardcoded credentials

CS.HCC.PWD  Use of a hardcoded password

CS.HCC.USER  Use of a hardcoded user name

CS.XSS.PERSIST  Cross-site Scripting Persisting Vulnerability

CS.XSS.REFLECT  Cross-site Scripting Reflecting Vulnerability

CS.AUTH.NOATTR  Possible missing authorization check

CS.SV.TAINTED.ALLOC_SIZE  Use of unvalidated integer in memory allocation

CS.SV.TAINTED.BINOP  Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.BINOP  Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.GLOBAL  Use of unvalidated integer in an assignment operation

CS.SV.TAINTED.CALL.INDEX_ACCESS  Use of unvalidated integer as array index by function call

CS.SV.TAINTED.CALL.LOOP_BOUND  Use of unvalidated integer in loop condition through a function call

CS.SV.TAINTED.CALL.LOOP_BOUND.RESOURCE  Resource allocation in a loop is controlled by tainted data

CS.SV.TAINTED.DESERIALIZATION  Use of unvalidated integer during deserialization in object creation

CS.SV.TAINTED.DLLPRELOAD  Use of unvalidated string to load a DLL

CS.SV.TAINTED.FMTSTR  Use of unvalidated data in a format string

CS.SV.TAINTED.GLOBAL  Use of Unvalidated Integer in an Assignment Operation

CS.SV.TAINTED.INDEX_ACCESS  Use of unvalidated integer as array index

CS.SV.TAINTED.INJECTION  C# command injection

CS.SV.TAINTED.LOOP_BOUND  Use of unvalidated integer in loop condition

CS.SV.TAINTED.LOOP_BOUND.RESOURCE  Resource allocation in a loop controlled by tainted data

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.SQL.INJECT.LOCAL  SQL injection

CS.SQL.INJECT.LOCAL  SQL injection

CS.SV.TAINTED.FMTSTR  Use of unvalidated data in a format string

CS.SQL.INJECT.LOCAL  SQL injection

CS.SV.TAINTED.ALLOC_SIZE  Use of unvalidated integer in memory allocation

CS.SV.TAINTED.CALL.GLOBAL  Use of unvalidated integer in an assignment operation

CS.SV.TAINTED.CALL.INDEX_ACCESS  Use of unvalidated integer as array index by function call

CS.SV.TAINTED.CALL.LOOP_BOUND  Use of unvalidated integer in loop condition through a function call

CS.SV.TAINTED.CALL.LOOP_BOUND.RESOURCE  Resource allocation in a loop is controlled by tainted data

CS.SV.TAINTED.DESERIALIZATION  Use of unvalidated integer during deserialization in object creation

CS.SV.TAINTED.FMTSTR  Use of unvalidated data in a format string

CS.SV.TAINTED.GLOBAL  Use of Unvalidated Integer in an Assignment Operation

CS.SV.TAINTED.INDEX_ACCESS  Use of unvalidated integer as array index

CS.SV.TAINTED.INJECTION  C# command injection

CS.SV.TAINTED.LOOP_BOUND  Use of unvalidated integer in loop condition

CS.SV.TAINTED.LOOP_BOUND.RESOURCE  Resource allocation in a loop controlled by tainted data

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.SV.TAINTED.INJECTION  C# command injection

CS.SV.TAINTED.INJECTION  C# command injection

CS.XSS.PERSIST  Cross-site Scripting Persisting Vulnerability

CS.XSS.REFLECT  Cross-site Scripting Reflecting Vulnerability

CS.SQL.INJECT.LOCAL  SQL injection

CS.SQL.INJECT.LOCAL  SQL injection

CS.SV.TAINTED.FMTSTR  Use of unvalidated data in a format string

CS.SV.TAINTED.CALL.INDEX_ACCESS  Use of unvalidated integer as array index by function call

CS.SV.TAINTED.INDEX_ACCESS  Use of unvalidated integer as array index

CS.ABV.EXCEPT  IndexOutOfRange exception while accessing array element

CS.SV.TAINTED.BINOP  Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.BINOP  Use of unvalidated integer in binary operation

CS.FRACTION.LOSS  Possible loss of fraction

CS.INFORMATION_EXPOSURE.ALL  Potential information exposure

CS.INFORMATION_EXPOSURE.ATTR  Potential security information exposure

CS.SV.USAGERULES.PERMISSIONS  Use of Privilege Elevation

CS.X509.REVOCATION  Certificate revocation list check is disabled.

CS.X509.VALIDATION  Validation of input is not done using AntiForgery.Validate

CS.RCA  Risky cryptographic algorithm used

CS.CSRF.ATTR.NOATTR  AntiForgery attribute should be added to class or method.

CS.CSRF.ATTR.POST  AntiForgery attribute should be added to class or method.

CS.CSRF.VALIDATE  Validation of 'POST request data access' is not done.

CS.CSRF.VSUK.CONSTASSIGN  A const string is assigned to property 'ViewStateUserKey'.

CS.CSRF.VSUK.NOASSIGN  Property 'ViewStateUserKey' is not set.

CS.DBZ.CONST  Division by a zero constant occurs

CS.DBZ.CONST.CALL  The value '0' is passed to function that can use this value as divisor

CS.DBZ.GENERAL  Division by zero might occur

CS.DBZ.ITERATOR  Division by zero might occur in a loop iterator

CS.ASSIGN.SELF  Assignment of expression to itself

CS.CTOR.VIRTUAL  Virtual member call in constructor

CS.HIDDEN.MEMBER.LOCAL.CLASS  Member is hidden by a local variable

CS.HIDDEN.MEMBER.LOCAL.STRUCT  Member is hidden by a local variable

CS.HIDDEN.MEMBER.PARAM.CLASS  Member is hidden by a parameter

CS.HIDDEN.MEMBER.PARAM.STRUCT  Member is hidden by a parameter

CS.IFACE.EMPTY  Empty interface

CS.LOOP.STR.CONCAT  String concatenation in a loop

CS.RESOURCE.AUTOBOXING  Autoboxing during operation inside a loop

CS.RESOURCE.LOOP  Object Allocation inside a loop

CS.RESOURCE.UNBOXING  Unboxing during operation inside a loop

CS.SV.TAINTED.CALL.LOOP_BOUND.RESOURCE  Resource allocation in a loop is controlled by tainted data

CS.SV.TAINTED.LOOP_BOUND.RESOURCE  Resource allocation in a loop controlled by tainted data

CS.RLK  Resource leak

CS.LOCRET.ARG  Function returns address of local variable

CS.LOCRET.GLOB  Function returns address of local variable

CS.LOCRET.RET  Function returns address of local variable

CS.UFR  Using freed resource

CS.SV.TAINTED.DLLPRELOAD  Use of unvalidated string to load a DLL

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.UNSAFE.DLLPRELOAD  Use of Attribute to Load a DLL

CS.UNSAFE.SEARCH_PATH  Use of search path to resolve absolute Path

CS.NRE.CHECK.CALL.MIGHT  Reference may be passed to function that can dereference it after it was positively checked for null

CS.NRE.CHECK.CALL.MUST  Reference will be passed to function that may dereference it after it was positively checked for null

CS.NRE.CHECK.MIGHT  Reference may be dereferenced after it was positively checked for null

CS.NRE.CHECK.MUST  Reference will be dereferenced after it was positively checked for null

CS.NRE.CONST.CALL  Constant null is passed to function that can dereference it

CS.NRE.CONST.DEREF  Constant null is dereferenced

CS.NRE.FUNC.CALL.MIGHT  Result of function that may return null may be passed to another function that may dereference it

CS.NRE.FUNC.CALL.MUST  Result of function that may return null will be passed to another function that may dereference it

CS.NRE.FUNC.MIGHT  Result of function that can return null may be dereferenced

CS.NRE.FUNC.MUST  Result of function that may return null will be dereferenced

CS.NRE.GEN.CALL.MIGHT  Null reference may be passed to function that may dereference it

CS.NRE.GEN.CALL.MUST  Null reference will be passed to function that may dereference it

CS.NRE.GEN.MIGHT  Null reference may be dereferenced

CS.NRE.GEN.MUST  Null reference will be dereferenced

CS.RNRE  Suspicious dereference before null check

CS.SV.TAINTED.DESERIALIZATION  Use of unvalidated integer during deserialization in object creation

CS.LOCRET.ARG  Function returns address of local variable

CS.LOCRET.GLOB  Function returns address of local variable

CS.LOCRET.RET  Function returns address of local variable

CS.CMP.VAL.NULL  Possible comparing value type expression with 'null'

CS.CONSTCOND.DO  'do' controlling expression is always true or always false

CS.CONSTCOND.IF  'if' controlling expression is always true or always false

CS.CONSTCOND.SWITCH  'switch' selector expression is constant

CS.CONSTCOND.TERNARY  Controlling condition in conditional expression is always true or always false

CS.CONSTCOND.WHILE  'while' controlling expression is always true or always false

CS.WRONGUSE.REFEQ  Improper usage of Object.ReferenceEquals

CS.XXE.DOCUMENT  Possible XML External Entity (XXE) Attack

CS.XXE.READER  Possible XML External Entity (XXE) Attack

CS.XXE.TEXT_READER  Possible XML External Entity (XXE) Attack

CS.LOCRET.ARG  Function returns address of local variable

CS.LOCRET.GLOB  Function returns address of local variable

CS.LOCRET.RET  Function returns address of local variable

CS.UNCHECKED.CAST  Object with type 'Object' is incorrectly cast to another object

CS.UNCHECKED.LOOPITER.CAST  Object with type 'Object' is incorrectly cast to another object in a loop

CS.WRONG.CAST  Object is incorrectly cast to another object

CS.WRONG.CAST.MIGHT  Object may be incorrectly cast to another object

CS.NPS  No permissions set for resource before accessing it

CS.RLK  Resource leak

CS.ABV.EXCEPT  IndexOutOfRange exception while accessing array element

CS.HCC  Use of hardcoded credentials

CS.HCC.PWD  Use of a hardcoded password

CS.HCC.USER  Use of a hardcoded user name

CS.AUTH.NOATTR  Possible missing authorization check

CS.SV.TAINTED.ALLOC_SIZE  Use of unvalidated integer in memory allocation

CS.SV.TAINTED.BINOP  Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.BINOP  Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.GLOBAL  Use of unvalidated integer in an assignment operation

CS.SV.TAINTED.CALL.INDEX_ACCESS  Use of unvalidated integer as array index by function call

CS.SV.TAINTED.CALL.LOOP_BOUND  Use of unvalidated integer in loop condition through a function call

CS.SV.TAINTED.CALL.LOOP_BOUND.RESOURCE  Resource allocation in a loop is controlled by tainted data

CS.SV.TAINTED.DESERIALIZATION  Use of unvalidated integer during deserialization in object creation

CS.SV.TAINTED.DLLPRELOAD  Use of unvalidated string to load a DLL

CS.SV.TAINTED.FMTSTR  Use of unvalidated data in a format string

CS.SV.TAINTED.GLOBAL  Use of Unvalidated Integer in an Assignment Operation

CS.SV.TAINTED.INDEX_ACCESS  Use of unvalidated integer as array index

CS.SV.TAINTED.INJECTION  C# command injection

CS.SV.TAINTED.LOOP_BOUND  Use of unvalidated integer in loop condition

CS.SV.TAINTED.LOOP_BOUND.RESOURCE  Resource allocation in a loop controlled by tainted data

CS.SV.TAINTED.PATH_TRAVERSAL  Use of unvalidated data in a path traversal

CS.RESOURCE.AUTOBOXING  Autoboxing during operation inside a loop

CS.RESOURCE.UNBOXING  Unboxing during operation inside a loop