New to CAPEC? Start Here
Home > CAPEC List > CAPEC-372: DEPRECATED: WASC-39 - XPath Injection (Version 3.5)  


Category ID: 372
Status: Deprecated
+ Summary
This category is related to the WASC Threat Classification 2.0 item XPath Injection
+ Membership
HasMemberDetailed Attack PatternDetailed Attack Pattern - A detailed level attack pattern in CAPEC provides a low level of detail, typically leveraging a specific technique and targeting a specific technology, and expresses a complete execution flow. Detailed attack patterns are more specific than meta attack patterns and standard attack patterns and often require a specific protection mechanism to mitigate actual attacks. A detailed level attack pattern often will leverage a number of different standard level attack patterns chained together to accomplish a goal.83XPath Injection
+ References
[REF-315] "WASC Threat Classification 2.0". WASC-39 - XPath Injection. The Web Application Security Consortium (WASC). 2010. <>.
+ Content History
Submission DateSubmitterOrganization
2014-06-23CAPEC Content TeamThe MITRE Corporation
Modification DateModifierOrganization
2020-12-17CAPEC Content TeamThe MITRE Corporation
Updated @Name, @Status
Previous Entry Names
Change DatePrevious Entry Name
2020-12-17WASC-39 - XPath Injection
More information is available — Please select a different filter.
Page Last Updated or Reviewed: December 17, 2020