Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-794 (对特殊元素的多个实例的过滤不完全) — Vulnerability Class 5

5 vulnerabilities classified as CWE-794 (对特殊元素的多个实例的过滤不完全). AI Chinese analysis included.

CWE-794 represents a critical input validation weakness where software fails to sanitize every occurrence of special characters or sequences within user-supplied data. Attackers typically exploit this vulnerability by injecting multiple instances of malicious payloads, such as nested HTML tags or repeated SQL operators, to bypass single-pass filtering mechanisms. By carefully crafting inputs that contain sequential or scattered special elements, adversaries can evade detection rules that only address the first or last instance, ultimately leading to successful cross-site scripting or injection attacks. Developers can prevent this flaw by implementing robust, multi-layered validation strategies that iterate through the entire input string. Utilizing comprehensive sanitization libraries that handle all occurrences, rather than relying on simple string replacements, ensures that no residual malicious content remains to compromise downstream components or execute unintended commands.

MITRE CWE Description
The product receives data from an upstream component, but does not filter all instances of a special element before sending it to a downstream component. Incomplete filtering of this nature may be applied to: sequential elements (special elements that appear next to each other) or non-sequential elements (special elements that appear multiple times in different locations).
Common Consequences (1)
IntegrityUnexpected State
Examples (1)
The following code takes untrusted input and uses a regular expression to filter "../" from the input. It then appends this result to the /home/user/ directory and attempts to read the file in the final resulting path.
my $Username = GetUntrustedInput(); $Username =~ s/\.\.\///; my $filename = "/home/user/" . $Username; ReadAndSendFile($filename);
Bad · Perl
../../../etc/passwd
Attack
CVE IDTitleCVSSSeverityPublished
CVE-2026-21876 OWASP CRS has multipart bypass using multiple content-type parts — coreruleset 9.3 Critical2026-01-08
CVE-2021-0233 Junos OS: ACX500 Series, ACX4000 Series: Denial of Service due to FFEB crash while processing high rate of specific packets. — Junos OS 7.5 High2021-04-22
CVE-2021-0203 Junos OS: EX and QFX5K Series: Storm Control does not work as expected when Redundant Trunk Group is configured — Junos OS 8.6 High2021-01-15
CVE-2020-1665 Junos OS: MX series/EX9200 Series: IPv6 DDoS protection does not work as expected. — Junos OS 5.3 Medium2020-10-16
CVE-2019-0002 Junos OS: EX2300 and EX3400 series: Certain stateless firewall filter rules might not take effect — Junos OS 9.8 -2019-01-15

Vulnerabilities classified as CWE-794 (对特殊元素的多个实例的过滤不完全) represent 5 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.