CWE-235: Improper Handling of Extra Parameters
The product does not handle or incorrectly handles when the number of parameters, fields, or arguments with the same name exceeds the expected amount.
Last updated
Overview
CWE-235 (Improper Handling of Extra Parameters) is a variant-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
Real-world CVEs
4 recorded CVEs are caused by CWE-235 (Improper Handling of Extra Parameters). The highest-severity and most recent are shown first. 2 new CWE-235 CVEs have been recorded so far in 2026.