Add CWE-676 to cwe mapping (#874)

ccojocar · web-flow · commit 6cd9e6289db3 · 2022-10-06T08:18:21.000+02:00
diff --git a/cwe/data.go b/cwe/data.go
@@ -129,6 +129,11 @@ var (
 			Description: "The software constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component.",
 			Name:        "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')",
 		},
+		{
+			ID:          "676",
+			Description: "The program invokes a potentially dangerous function that could introduce a vulnerability if it is used incorrectly, but the function can also be used safely.",
+			Name:        "Use of Potentially Dangerous Function",
+		},
 	}
 )
 

Original file line number	Diff line number	Diff line change
`@@ -129,6 +129,11 @@ var (`
`129`	`129`	`Description: "The software constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component.",`
`130`	`130`	`Name: "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')",`
`131`	`131`	`},`
	`132`	`+ {`
	`133`	`+ ID: "676",`
	`134`	`+ Description: "The program invokes a potentially dangerous function that could introduce a vulnerability if it is used incorrectly, but the function can also be used safely.",`
	`135`	`+ Name: "Use of Potentially Dangerous Function",`
	`136`	`+ },`
`132`	`137`	`}`
`133`	`138`	`)`
`134`	`139`