{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,25]],"date-time":"2026-02-25T17:12:45Z","timestamp":1772039565644,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":14,"publisher":"ACM","license":[{"start":{"date-parts":[[2012,9,3]],"date-time":"2012-09-03T00:00:00Z","timestamp":1346630400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2012,9,3]]},"DOI":"10.1145\/2351676.2351733","type":"proceedings-article","created":{"date-parts":[[2012,9,4]],"date-time":"2012-09-04T12:51:11Z","timestamp":1346763071000},"page":"310-313","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":65,"title":["Predicting common web application vulnerabilities from input validation and sanitization code patterns"],"prefix":"10.1145","author":[{"given":"Lwin Khin","family":"Shar","sequence":"first","affiliation":[{"name":"Nanyang Technological University, Singapore"}]},{"given":"Hee Beng Kuan","family":"Tan","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore"}]}],"member":"320","published-online":{"date-parts":[[2012,9,3]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2009.06.055"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.5555\/1248547.1248548"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.29"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2009.5070521"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2008.35"},{"key":"e_1_3_2_1_6_1","volume-title":"Proceedings of the 17th USENIX Security Symposium. 31-43","author":"Martin M.","unstructured":"Martin , M. and Lam , M. S . 2008. Automatic generation of XSS and SQL injection attacks with goal-directed model checking . In Proceedings of the 17th USENIX Security Symposium. 31-43 . Martin, M. and Lam, M. S. 2008. Automatic generation of XSS and SQL injection attacks with goal-directed model checking. In Proceedings of the 17th USENIX Security Symposium. 31-43."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.1976.233837"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2007.10"},{"key":"e_1_3_2_1_9_1","volume-title":"Top Ten project","author":"OWASP.","year":"2010","unstructured":"OWASP. Top Ten project 2010 . http:\/\/www.owasp.org, accessed January 2012. OWASP. Top Ten project 2010. http:\/\/www.owasp.org, accessed January 2012."},{"key":"e_1_3_2_1_10_1","volume-title":"Proceedings of the 34th International Conference on Software Engineering. 1293-1296","author":"Shar L. K.","unstructured":"Shar , L. K. and Tan , H. B. K. 2012. Mining input sanitization patterns for predicting SQLI and XSS vulnerabilities . In Proceedings of the 34th International Conference on Software Engineering. 1293-1296 . Shar, L. K. and Tan, H. B. K. 2012. Mining input sanitization patterns for predicting SQLI and XSS vulnerabilities. In Proceedings of the 34th International Conference on Software Engineering. 1293-1296."},{"key":"e_1_3_2_1_11_1","volume-title":"Proceedings of the 22nd Innovative Applications of Artificial Intelligence Conference.","author":"Tosun A.","unstructured":"Tosun , A. and Bener , A . 2010. Ai-based software defect predictors: applications and benefits in a case study . In Proceedings of the 22nd Innovative Applications of Artificial Intelligence Conference. Tosun, A. and Bener, A. 2010. Ai-based software defect predictors: applications and benefits in a case study. In Proceedings of the 22nd Innovative Applications of Artificial Intelligence Conference."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.5555\/800078.802557"},{"key":"e_1_3_2_1_13_1","unstructured":"Witten I. H. and Frank E. 2005. Data Mining. 2nd ed. Morgan Kaufmann.  Witten I. H. and Frank E. 2005. Data Mining. 2nd ed. Morgan Kaufmann."},{"key":"e_1_3_2_1_14_1","volume-title":"Proceedings of the 15th USENIX Security Symposium. 179-192","author":"Xie Y.","unstructured":"Xie , Y. and Aiken , A . 2006. Static detection of security vulnerabilities in scripting languages . In Proceedings of the 15th USENIX Security Symposium. 179-192 . Xie, Y. and Aiken, A. 2006. Static detection of security vulnerabilities in scripting languages. In Proceedings of the 15th USENIX Security Symposium. 179-192."}],"event":{"name":"ASE'12: IEEE\/ACM International Conference on Automated Software Engineering","location":"Essen Germany","acronym":"ASE'12","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","SIGAI ACM Special Interest Group on Artificial Intelligence","Universit\u00e4t Duisburg Essen Universit\u00e4t Duisburg Essen","TCSE IEEE Computer Society's Tech. Council on Software Engin."]},"container-title":["Proceedings of the 27th IEEE\/ACM International Conference on Automated Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2351676.2351733","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2351676.2351733","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T09:34:24Z","timestamp":1750239264000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2351676.2351733"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2012,9,3]]},"references-count":14,"alternative-id":["10.1145\/2351676.2351733","10.1145\/2351676"],"URL":"https:\/\/doi.org\/10.1145\/2351676.2351733","relation":{},"subject":[],"published":{"date-parts":[[2012,9,3]]},"assertion":[{"value":"2012-09-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}