Security Links
In Infodraw Media Relay Service (MRS) 7.1.0.0, the MRS web server (on port 12654) allows reading arbitrary files via ../ directory traversal in the username field. Reading ServerParameters.xml may reveal administrator credentials in cleartext or with MD5 hashing.
#CWE
CWE

CWE (Common Weakness Enumeration) is a community-developed list of software and hardware weakness types. It serves as a common language, a measuring stick for security tools, and as a baseline for weakness identification, mitigation, and prevention efforts.

https://cwe.mitre.org/index.html
SANS CWE TOP 25 Most Dangerous Software Errors

What Errors Are Included in the Top 25 Software Errors? Computer security training, certification and free resources. We specialize in computer/network security, digital forensics, application security and IT audit.

https://www.sans.org/top25-software-errors/