CWE · MITRE source
CWE-790Improper Filtering of Special Elements
The product receives data from an upstream component, but does not filter or incorrectly filters special elements before sending it to a downstream component.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2023-45239 | 3.7 | 9.8 | 0.2869 | 2023-10-06 |
CVE-2021-43802 | 2.0 | 9.9 | 0.0055 | 2021-12-09 |
CVE-2023-22578 | 2.0 | 10.0 | 0.0018 | 2023-02-16 |
CVE-2024-31616 | 1.8 | 8.8 | 0.0017 | 2024-04-23 |
CVE-2024-42416 | 1.8 | 8.8 | 0.0100 | 2024-09-05 |
CVE-2025-15576 | 1.5 | 7.5 | 0.0001 | 2026-03-09 |
CVE-2025-27260 | 1.5 | 7.5 | 0.0003 | 2026-03-25 |
CVE-2026-2328 | 1.5 | 7.5 | 0.0003 | 2026-03-30 |
CVE-2024-6540 | 1.2 | 5.7 | 0.0047 | 2024-07-15 |
CVE-2025-0431 | 1.2 | 5.8 | 0.0009 | 2025-03-19 |
CVE-2024-43442 | 1.0 | 4.9 | 0.0008 | 2024-08-26 |
CVE-2024-43443 | 1.0 | 4.9 | 0.0011 | 2024-08-26 |
CVE-2024-47984 | 0.9 | 4.4 | 0.0019 | 2024-12-13 |