go
Security controls bypass or absence - Fingerprint - Go
Need Enhancement of security controls for fingerprint identification Context Usage of Go 1.16 for building high-performance and scalable applications Usage of Gin framework for building web applications in Go Description Non compliant code package ...
Use of software with known vulnerabilities in environments - Go
Need Regular software updates and patch management Context Usage of Go 1.16 for building high-performance and efficient applications Usage of Gin framework for building web applications in Go Usage of net/http for building HTTP servers in a Node.js ...
Inappropriate coding practices - relative path command - Go
Need Enforcement of secure coding practices to prevent the use of relative path commands Context Usage of Go 1.15 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Description Non ...
Inappropriate coding practices - invalid file - Go
Need Enforcement of proper file validation and extension matching Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package ...
Server side cross-site scripting - Go
Need Prevention of server-side cross-site scripting attacks Context Usage of Go 1.16 for building high-performance and scalable applications Usage of Gin for building web applications in Go Usage of net/http for creating HTTP servers in a Node.js ...
Server side template injection - Go
Need Prevention of server-side template injection attacks Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of html/template for generating HTML templates ...
Insecure encryption algorithm - Insecure Elliptic Curve - Go
Need Implementation of secure elliptic curves for encryption Context Usage of Go 1.16 for building efficient and scalable applications Usage of crypto/elliptic for elliptic curve cryptography operations Usage of crypto/rand for generating random ...
Password reset poisoning - Go
Need Secure password reset functionality Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for creating a web server in a Node.js ...
Account Takeover - Go
Need Enhanced user authentication and authorization mechanisms Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for handling HTTP requests and ...
Insecure encryption algorithm - Default encryption - Go
Need Implementation of secure encryption algorithms and the use of customer-controlled keys for enhanced data protection. Context Usage of Go 1.16 for building high-performance and concurrent applications Usage of the AWS SDK for Go to interact with ...
Excessive privileges - Access Mode - Go
Need Restriction of access privileges to system files and directories Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of the os module for ...
OS Command Injection - Go
Need Prevention of OS command injection attacks Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of os/exec for executing external commands in the ...
Insecure authentication method - LDAP - Go
Need Secure authentication method for LDAP Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of gopkg.in/ldap.v2 for LDAP (Lightweight Directory Access ...
Insecure generation of random numbers - Static IV - Go
Need Secure generation of random numbers and dynamic initialization vectors Context Usage of Go 1.16 for building high-performance and efficient applications Usage of Gin framework for building web applications in Go Description Non compliant code ...
Use of software with known vulnerabilities in development - Go
Need Mitigation of software vulnerabilities in development Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of sessions package from ...
Inappropriate coding practices - Unused properties - Go
Need Elimination of unused properties in the codebase Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
Insecure authentication method - NTLM - Go
Need Implementation of a secure authentication method Context Usage of Go 1.16 for building high-performance and concurrent applications Usage of Gin for building web applications in Go Usage of go-ntlm/ntlm for NTLM authentication in Go programming ...
Inappropriate coding practices - Wildcard export - Go
Need Enforce explicit exports in coding practices Context Usage of Go 1.15 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
Insecurely generated token - OTP - Go
Need Secure generation and transmission of OTP tokens Context Usage of Go 1.16 for developing efficient and scalable applications Usage of Gin framework for building web applications in Go Usage of math/rand for generating random numbers Usage of ...
Non-encrypted confidential information - Hexadecimal - Go
Need Secure encryption of confidential information Context Usage of Go 1.16 for developing scalable and efficient applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for creating a HTTP server in a ...
Security controls bypass or absence - Tampering Protection - Go
Need Implementation of tampering detection and protection mechanisms Context Usage of Go 1.16 for building efficient and scalable applications Usage of Gin framework for building web applications in Go Usage of net/http for handling HTTP requests and ...
Use of an insecure channel - HTTP - Go
Need Secure transmission of client information Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
DOM-Based cross-site scripting (XSS) - Go
Need Prevention of cross-site scripting (XSS) attacks Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for handling HTTP requests and responses in a ...
Insecure object reference - User deletion - Go
Need Enhancement of user deletion process and session management Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for building HTTP ...
Authentication mechanism absence or evasion - Response tampering - Go
Need Implementation of a secure and reliable authentication mechanism Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of Gin framework for building web applications in Go Usage of net/http for building HTTP ...
Weak credential policy - Temporary passwords - Go
Need Strengthening temporary password security policies Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for creating HTTP ...
Weak credential policy - Password strength - Go
Need Implementation of a strong password policy Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for creating a web server in a Node.js ...
Technical information leak - Content response - Go
Need Prevention of unauthorized disclosure of technical information Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package ...
Sensitive information in source code - Credentials - Go
Need Protection of sensitive information in source code Context Usage of Go 1.16 for building high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
Insufficient data authenticity validation - Checksum verification - Go
Need Ensure data authenticity through proper checksum verification Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for creating HTTP servers in a ...
Insecure file upload - Files Limit - Go
Need Enforce file upload limits and implement proper file management Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for handling HTTP ...
Lack of data validation - Token - Go
Need Implementation of proper token validation and verification Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of jwt-go for JSON Web Token (JWT) ...
Technical information leak - Credentials - Go
Need Protection of sensitive credentials from being exposed Context Usage of Go 1.16 for building high-performance and concurrent applications Usage of Gin framework for building web applications in Go Description Non compliant code package main ...
Security controls bypass or absence - Session Invalidation - Go
Need Implementation of proper session invalidation mechanisms Context Usage of Go 1.16 for building high-performance and concurrent applications Usage of gin-gonic/gin for building web applications and APIs in Go Description Non compliant code ...
Lack of data validation - Non Sanitized Variables - Go
Need Implementation of proper data validation and sanitization mechanisms Context Usage of Go 1.16 for developing scalable and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of os/exec for executing external ...
Lack of data validation - OTP - Go
Need Implementation of data validation for OTP tokenCode parameter Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for creating ...
Lack of data validation - Special Characters - Go
Need Implementation of data validation to prevent the use of special characters in input fields. Context Usage of Go 1.16 for developing scalable and efficient applications Usage of gin-gonic/gin for building web applications in Go Description Non ...
Insecure session management - CSRF Fixation - Go
Need Secure session management and protection against CSRF Fixation Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for building HTTP servers in a ...
Business information leak - Corporate information - Go
Need Protection of sensitive corporate information from unauthorized access Context Usage of Go 1.16 for developing high-performance and concurrent applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for ...
Use of insecure channel - Source code - Go
Need Secure transmission of customer information Context Usage of Go 1.16 for building efficient and scalable applications Usage of Gin framework for building web applications in Go Description Non compliant code package main import ( ...
Next page