About
A vulnerability is a vector of attack in software.
For instance:
- encoding / escaping is not used on user information, ie:
- in SQL, not using the SQL parameters
- in HTML, not escaping user information
- a verification is not made
- a bug
- a check is made but not on the good variable
- …
Database
All public vulnerabilities can be found in the vulnerability database