{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,24]],"date-time":"2026-04-24T15:02:26Z","timestamp":1777042946860,"version":"3.51.4"},"reference-count":43,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"1","license":[{"start":{"date-parts":[[2016,3,1]],"date-time":"2016-03-01T00:00:00Z","timestamp":1456790400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"}],"funder":[{"name":"EC","award":["FP7-607109 (SEGRID)"],"award-info":[{"award-number":["FP7-607109 (SEGRID)"]}]},{"name":"Funda\u00e7\u00e3o para a Ci\u00eancia e a Tecnologia (FCT)"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Rel."],"published-print":{"date-parts":[[2016,3]]},"DOI":"10.1109\/tr.2015.2457411","type":"journal-article","created":{"date-parts":[[2015,8,17]],"date-time":"2015-08-17T18:24:17Z","timestamp":1439835857000},"page":"54-69","source":"Crossref","is-referenced-by-count":113,"title":["Detecting and Removing Web Application Vulnerabilities with Static Analysis and Data Mining"],"prefix":"10.1109","volume":"65","author":[{"given":"Iberia","family":"Medeiros","sequence":"first","affiliation":[]},{"given":"Nuno","family":"Neves","sequence":"additional","affiliation":[]},{"given":"Miguel","family":"Correia","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/CSMR.2007.16"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1145\/1108473.1108496"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315311"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2008.35"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1016\/S0164-1212(99)00102-8"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2009.06.055"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/1101908.1101935"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2013.6606610"},{"key":"ref35","first-page":"545","article-title":"Security of open source web applications","author":"walden","year":"2009","journal-title":"Proc Int'l Symp Empirical Software Eng and Measurement"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2010.81"},{"key":"ref10","first-page":"16","article-title":"Detecting format string vulnerabilities with type qualifiers","volume":"10","author":"shankar","year":"2001","journal-title":"Proc 10th Usenix Security Symp"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2011.12.006"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/161494.161501"},{"key":"ref12","author":"de poel","year":"2010","journal-title":"Automated security review of PHP web applications with static code analysis"},{"key":"ref13","year":"0","journal-title":"WAP tool website"},{"key":"ref14","year":"2012","journal-title":"Hacker intelligence initiative monthly trend report #8"},{"key":"ref15","author":"williams","year":"2013","journal-title":"OWASP Top 10 - 2013 The Ten Most Critical Web Application Security Risks"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/2.241422"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/JSAC.2002.806121"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-25660-1_20"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/52.976940"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/2351676.2351733"},{"key":"ref4","first-page":"225","article-title":"SigFree: A signature-free buffer overflow attack blocker","author":"wang","year":"2006","journal-title":"Proc 15th Usenix Security Symp"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2012.6227096"},{"key":"ref3","first-page":"124","article-title":"Defending against injection attacks through context-sensitive string evaluation","author":"pietraszek","year":"2005","journal-title":"Proc 8th Int Conf Recent Advances in Intrusion Detection"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/2168836.2168865"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/2166956.2166964"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2009.91"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/988672.988679"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/775152.775174"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2007.70748"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/1134744.1134751"},{"key":"ref1","year":"2013","journal-title":"Internet threat report 2012 trends vol 18"},{"key":"ref20","author":"parr","year":"2009","journal-title":"Language Implementation Patterns Create Your Own Domain-Specific and General Programming Languages"},{"key":"ref22","first-page":"1","article-title":"Statistical comparisons of classifiers over multiple data sets","volume":"7","author":"dem?ar","year":"2006","journal-title":"J Mach Learn Res"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1145\/1250734.1250739"},{"key":"ref42","year":"0","journal-title":"Selenium IDE"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1002\/9780470464076"},{"key":"ref41","year":"0","journal-title":"NIST's SAMATE Reference Dataset (SRD)"},{"key":"ref23","author":"witten","year":"2011","journal-title":"Data Mining Practical Machine Learning Tools and Techniques"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/C-M.1978.218136"},{"key":"ref43","year":"0","journal-title":"OWASP ESAPI"},{"key":"ref25","first-page":"623","article-title":"The design of a prototype mutation system for program testing","author":"budd","year":"1978","journal-title":"Proc AFIPS National Computer Conf"}],"container-title":["IEEE Transactions on Reliability"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/24\/7422884\/7206620.pdf?arnumber=7206620","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,12]],"date-time":"2022-01-12T16:48:45Z","timestamp":1642006125000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7206620\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,3]]},"references-count":43,"journal-issue":{"issue":"1"},"URL":"https:\/\/doi.org\/10.1109\/tr.2015.2457411","relation":{},"ISSN":["0018-9529","1558-1721"],"issn-type":[{"value":"0018-9529","type":"print"},{"value":"1558-1721","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016,3]]}}}