| Out-of-bounds Write |
1 |
CWE-787https://cwe.mitre.org/data/definitions/787.html |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') |
2 |
CWE-79https://cwe.mitre.org/data/definitions/79.html |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') |
3 |
CWE-89https://cwe.mitre.org/data/definitions/89.html |
| Use After Free |
4 |
CWE-416https://cwe.mitre.org/data/definitions/416.html |
| Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') |
5 |
CWE-78https://cwe.mitre.org/data/definitions/78.html |
| Improper Input Validation |
6 |
CWE-20https://cwe.mitre.org/data/definitions/20.html |
| Out-of-bounds Read |
7 |
CWE-125https://cwe.mitre.org/data/definitions/125.html |
| Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') |
8 |
CWE-22https://cwe.mitre.org/data/definitions/22.html |
| Cross-Site Request Forgery (CSRF) |
9 |
CWE-352https://cwe.mitre.org/data/definitions/352.html |
| Unrestricted Upload of File with Dangerous Type |
10 |
CWE-434https://cwe.mitre.org/data/definitions/434.html |
| Missing Authorization |
11 |
CWE-862https://cwe.mitre.org/data/definitions/862.html |
| NULL Pointer Dereference |
12 |
CWE-476https://cwe.mitre.org/data/definitions/476.html |
| Improper Authentication |
13 |
CWE-287https://cwe.mitre.org/data/definitions/287.html |
| Integer Overflow or Wraparound |
14 |
CWE-190https://cwe.mitre.org/data/definitions/190.html |
| Deserialization of Untrusted Data |
15 |
CWE-502https://cwe.mitre.org/data/definitions/502.html |
| Improper Neutralization of Special Elements used in a Command ('Command Injection') |
16 |
CWE-77https://cwe.mitre.org/data/definitions/77.html |
| Improper Restriction of Operations within the Bounds of a Memory Buffer |
17 |
CWE-119https://cwe.mitre.org/data/definitions/119.html |
| Use of Hard-coded Credentials |
18 |
CWE-798https://cwe.mitre.org/data/definitions/798.html |
| Server-Side Request Forgery (SSRF) |
19 |
CWE-918https://cwe.mitre.org/data/definitions/918.html |
| Missing Authentication for Critical Function |
20 |
CWE-306https://cwe.mitre.org/data/definitions/306.html |
| Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') |
21 |
CWE-362https://cwe.mitre.org/data/definitions/362.html |
| Improper Privilege Management |
22 |
CWE-269https://cwe.mitre.org/data/definitions/269.html |
| Improper Control of Generation of Code ('Code Injection') |
23 |
CWE-94https://cwe.mitre.org/data/definitions/94.html |
| Incorrect Authorization |
24 |
CWE-863https://cwe.mitre.org/data/definitions/863.html |
| Incorrect Default Permissions |
25 |
CWE-276https://cwe.mitre.org/data/definitions/276.html |
Following the same format as https://github.com/advanced-security/advanced-security-material/blob/main/code-scanning-guides/OWASP2025-CodeQL.md, add a document showing what CodeQL queries cover the SANS Top 25.
The SANS Top 25 list can be found here: https://www.sans.org/top25-software-errors.
Below is a table of the SANS Top 25 and the respective CWEs.