go
Business information leak - Customers or providers - Go
Need Protection of sensitive business information from unauthorized access or leakage Context Usage of Go 1.16 for building efficient and scalable applications Usage of Gin for building web applications in Go Description Non compliant code package ...
Non-upgradable dependencies - Go
Need Explicitly declare and manage dependencies in the source code to ensure upgradability and avoid potential security vulnerabilities. Context Usage of Go 1.16 for building high-performance and efficient applications Usage of Gin framework for ...
Insecurely generated token - Go
Need Secure token generation mechanism Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
Insecure session management - Go
Need Secure session management Context Usage of Go 1.16 for building high-performance and concurrent applications Usage of gin-gonic/gin for building web applications in Go Usage of sessions package from github.com/gin-contrib for managing user ...
Improper authorization control for web services - RDS - Go
Need Enhancement of authorization controls for web services - RDS Context Usage of Go 1.13 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of gorm for Object-Relational ...
Insecure or unset HTTP headers - Referrer-Policy - Go
Need Enforcement of secure and properly configured HTTP headers - Referrer-Policy Context Usage of Go 1.16 for developing high-performance and concurrent applications Usage of gin-gonic/gin for building web applications in Go Description Non ...
Weak CAPTCHA - Go
Need Implementation of a strong and secure CAPTCHA mechanism Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of base64Captcha for generating and ...
Insecure session expiration time - Go
Need Enforce secure session expiration time Context Usage of Go 1.16 for building efficient and scalable applications Usage of Gin for building web applications in Go Usage of sessions package from github.com/gin-contrib for managing user sessions in ...
Improper resource allocation - Go
Need Efficient resource allocation and management Context Usage of Go 1.16 for developing scalable and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for creating HTTP servers in Node.js Usage of ...
Technical information leak - Console functions - Go
Need Secure logging mechanism Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of log for logging and debugging purposes Description Non compliant code ...
Traceability loss - Server's clock - Go
Need Ensuring accurate time synchronization with NTP servers Context Usage of Go 1.16 for developing high-performance and concurrent applications Usage of gin-gonic/gin for building web applications and APIs in Go Description Non compliant code ...
Lack of data validation - Path Traversal - Go
Need Implementation of proper input validation and sanitization to prevent path traversal attacks Context Usage of Go 1.16 for building high-performance and efficient applications Usage of gin-gonic/gin for building web applications and APIs in Go ...
Concurrent sessions - Go
Need Enforcement of session limits and user notification Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
Remote File Inclusion - Go
Need Prevention of remote file inclusion attacks Context Usage of Go 1.16 for building efficient and scalable applications Usage of Gin framework for building web applications in Go Usage of net/http for creating HTTP servers in Node.js Usage of ...
Sensitive information stored in logs - Go
Need Protection of sensitive information in log files Context Usage of Go 1.16 for building efficient and scalable applications Usage of Gin framework for building web applications in Go Description Non compliant code package main import ( ...
Asymmetric denial of service - Content length - Go
Need Prevention of Content-Length manipulation in denial of service attacks Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of io/ioutil for ...
Anonymous connection - Go
Need Restriction of anonymous access to the server Context Usage of Go 1.16 for building high-performance and scalable applications Usage of Gin for building web applications in Go Usage of net/http for creating HTTP servers in a Node.js application ...
Lack of protection against brute force attacks - Go
Need Implementation of strong and effective brute force protection mechanisms Context Usage of Go 1.16 for developing scalable and efficient applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code ...
Insecure encryption algorithm - Go
Need Implementation of secure encryption algorithms Context Usage of Go 1.16 for building high-performance and scalable applications Usage of crypto/aes for AES encryption and decryption Usage of crypto/cipher for encryption and decryption operations ...
Cracked weak credentials - Go
Need Enhancement of password security measures Context Usage of Go 1.16 for developing scalable and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of bcrypt from golang.org/x/crypto for secure password hashing ...
Guessed weak credentials - Go
Need Enhancement of credential security Context Usage of Go 1.16 for building high-performance and efficient applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for creating a server and handling HTTP ...
Automatic information enumeration - Go
Need Prevention of automatic information enumeration Context Usage of Go 1.16 for developing high-performance and efficient applications Usage of Gin for building web applications in Go Usage of net/http for handling HTTP requests and responses in a ...
Insecure HTTP methods enabled - Go
Need Restriction of insecure HTTP methods Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Description Non compliant code package main import ...
Insecure or unset HTTP headers - Content-Security-Policy - Go
Need Implementation of secure and properly configured Content-Security-Policy headers Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code ...
Insecurely generated cookies - Go
Need Secure generation and handling of cookies Context Usage of Go 1.16 for building efficient and scalable applications Usage of Gin framework for building web applications in Go Description Non compliant code package main import ( ...
Enabled default credentials - Go
Need Implementation of strong, unique credentials for all system resources Context Usage of Go 1.15 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of gorm for ...
Improper authorization control for web services - Go
Need Enhancement of authorization control for web services Context Usage of Go 1.16 for developing high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Description Non compliant code package ...
Business information leak - Go
Need Protection of sensitive business information from unauthorized access or disclosure Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant ...
Technical information leak - Go
Need Prevention of unauthorized disclosure of technical information Context Usage of Go 1.17.1 for building high-performance applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
Weak credential policy - Go
Need Implementation of a strong credential policy Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of net/http for building HTTP servers in a Node.js ...
Insecure generation of random numbers - Go
Need Secure generation of random numbers Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( "fmt" "math/rand" ...
Password change without identity check - Go
Need Enforce strong identity verification for password changes Context Usage of Go 1.16 for developing high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for creating HTTP servers ...
Sensitive information sent via URL parameters - Go
Need Protection of sensitive information during transmission Context Usage of Go 1.16 for building high-performance and efficient applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main ...
Inadequate file size control - Go
Need Implementation of file size restrictions and validation Context Usage of Go 1.16 for developing scalable and efficient applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for creating HTTP servers in a ...
Insecure temporary files - Go
Need Secure handling of temporary files Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Usage of io/ioutil for reading and writing files in Node.js ...
Insecure file upload - Go
Need Secure file upload and validation Context Usage of Go 1.16 for building efficient and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for handling HTTP requests and responses in a Node.js server ...
User enumeration - Go
Need Prevention of user enumeration Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Usage of net/http for handling HTTP requests and responses in a Node.js ...
Uncontrolled external site redirect - Host Header Injection - Go
Need Prevention of unauthorized external site redirects Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications in Go Description Non compliant code package main import ( ...
Use of an insecure channel - Go
Need Secure transmission of sensitive information Context Usage of Go 1.16 for building high-performance and scalable applications Usage of gin-gonic/gin for building web applications and APIs in Go Description Non compliant code package main import ...
XPath injection - Go
Need Implementation of input validation and sanitization to prevent XPath injection attacks. Context Usage of Go 1.16 for developing high-performance and concurrent applications Usage of Gin framework for building web applications in Go Usage of ...
Next page