java
Lack of protection against brute force attacks - Credentials - Java
Need Implementation of a robust and secure mechanism to prevent brute force attacks on promotional code credentials. Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.servlet-api ...
Insecure or unset HTTP headers - Content-Type - Java
Need Enforce secure and properly set HTTP headers, including Content-Type. Context Usage of Java for building robust and scalable applications Usage of javax.servlet for Java web application development Usage of java.io for input and output ...
Insecure object reference - Session management - Java
Need Secure session management Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of javax.servlet.http for handling HTTP requests and responses ...
Insecure functionality - User management - Java
Need Secure user management and access control Context Usage of Java for building cross-platform applications Usage of javax.servlet for handling HTTP requests and responses in Java web applications Usage of java.io for input/output operations in ...
Insecurely generated token - Lifespan - Java
Need Securely generate session tokens with appropriate expiration times Context Usage of Java for building robust and scalable applications Usage of javax.servlet.http.Cookie for handling HTTP cookies in Java servlets Usage of HttpServletResponse for ...
Lack of data validation - HTML code - Java
Need Implementation of proper data validation for HTML code Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications with Servlets Description Non ...
Insecurely generated token - Validation - Java
Need Secure token generation and validation Context Usage of Java 8 for developing applications with enhanced features and performance Usage of java.io.IOException for handling input/output errors in Java Usage of javax.servlet.ServletException for ...
Improper resource allocation - Memory leak - Java
Need Proper management of resources to prevent memory leaks Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with servlets Description Non compliant code import javax.servlet.*; ...
Insecurely generated token - JWT - Java
Need Secure token generation for user creation service Context Usage of Java 8 for developing applications with enhanced features and performance Usage of SecretKeySpec for generating and managing secret keys in Java cryptography Usage of ...
Enabled default configuration - Java
Need Disabling default configurations to prevent unauthorized access and information disclosure Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with servlets Usage of ...
Insecure object reference - Data - Java
Need Secure object reference validation and authorization Context Usage of Java for building cross-platform applications and enterprise-level software Usage of javax.servlet for building Java web applications Usage of javax.servlet.http for handling ...
Insecure object reference - Files - Java
Need Secure and restricted access to user-specific files Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Description Non compliant code import ...
Security controls bypass or absence - Data creation - Java
Need Enforcement of proper security controls for data creation Context Usage of Java for building scalable and robust applications Usage of javax.servlet for handling HTTP requests and responses in Java web applications Usage of java.io for input and ...
Insecure functionality - Session management - Java
Need Secure session management Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.servlet-api for Java Servlet development Description Non compliant code import ...
Concurrent sessions control bypass - Java
Need Enforcement of concurrent session control Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.servlet-api for building Java web applications with Servlets Description Non ...
Authentication mechanism absence or evasion - Redirect - Java
Need Implementation of a robust and secure authentication mechanism Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Description Non compliant code ...
SQL injection - Code - Java
Need Implementation of proper input validation and the use of parameterized statements or stored procedures to prevent SQL injection attacks. Context Usage of Java for building robust and scalable applications Usage of java.sql.Connection for ...
Weak credential policy - Password Change Limit - Java
Need Enforcement of a password change limit policy Context Usage of Java for building cross-platform applications Usage of javax.servlet.http.* for handling HTTP requests and responses in Java Servlets Usage of java.io.IOException for handling ...
Insecure session management - Change Password - Java
Need Secure session management after a password change Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of java.io for input and output ...
Business information leak - Financial Information - Java
Need Protection of sensitive financial information from unauthorized access or disclosure Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.servlet for building Java web ...
Technical information leak - IPs - Java
Need Prevention of internal IP address exposure Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Usage of java.net for network communication in Java ...
Technical information leak - Logs - Java
Need Protection of sensitive technical information from unauthorized access Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of java.io for input ...
Insecure object reference - Financial information - Java
Need Secure access control for financial information Context Usage of Java 8 for developing applications with enhanced features and performance Usage of HttpServletRequest for handling HTTP requests in Java Servlets Usage of HttpServletResponse for ...
Insecure object reference - Corporate information - Java
Need Secure handling of corporate information and prevention of unauthorized access and modification Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet for building Java web applications ...
Insecure object reference - Personal information - Java
Need Secure access control and user authorization Context Usage of Java for building scalable and robust applications Usage of javax.servlet-api for building Java web applications with Servlets Usage of java.io for input and output operations in Java ...
Non-encrypted confidential information - Base 64 - Java
Need Secure storage of confidential information Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Description Non compliant code import ...
Automatic information enumeration - Personal Information - Java
Need Prevention of unauthorized access to personal information Context Usage of Java for building robust and scalable applications Usage of javax.servlet for Java web application development Usage of java.io for input and output operations in Java ...
Insecure encryption algorithm - ECB - Java
Need Implementation of secure encryption algorithms Context Usage of Java 8 for developing applications with enhanced features and performance improvements. Usage of javax.crypto.Cipher for encryption and decryption operations Usage of ...
Session Fixation - Java
Need Prevention of session hijacking Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet.http.Cookie for handling HTTP cookies in Java Servlet applications Usage of ...
Weak credential policy - Password Expiration - Java
Need Implementation of a strong credential policy with password expiration Context Usage of Java 8 for developing applications with improved performance and features Usage of AWS Java SDK IAM library for managing AWS Identity and Access Management ...
Sensitive information sent via URL parameters - Session - Java
Need Secure transmission of sensitive information in session tokens Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications with servlets Description Non ...
Restricted fields manipulation - Java
Need Prevention of unauthorized access and manipulation of restricted fields in employee registration Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with servlets Usage of ...
Insecure functionality - Fingerprint - Java
Need Secure user data updates and prevent unauthorized modifications Context Usage of Java 1.8 for running Java applications Usage of javax.servlet.http.HttpServletRequest for handling HTTP requests in Java Servlets Usage of HttpServletResponse for ...
Insecure functionality - Masking - Java
Need Secure data masking and protection Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications Usage of javax.servlet.http for handling HTTP requests and responses in Java web ...
Insecure functionality - Password management - Java
Need Secure password management Context Usage of Java 1.8 for developing applications Usage of javax.servlet for building Java web applications Usage of javax.servlet.http for handling HTTP requests and responses in Java web applications Usage of ...
Insecure functionality - File Creation - Java
Need Secure functionality - File Creation Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of java.io for input and output operations in Java ...
Insecure encryption algorithm - Blowfish - Java
Need Secure encryption algorithm for protecting sensitive information Context Usage of Java for building robust and scalable applications Usage of javax.crypto.Cipher for cryptographic operations Usage of javax.crypto.spec.SecretKeySpec for ...
Insecure encryption algorithm - AES - Java
Need Implementation of secure encryption algorithms Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.crypto.Cipher for cryptographic operations Usage of IvParameterSpec for ...
Insecure encryption algorithm - TripleDES - Java
Need Secure encryption algorithm for data protection Context Usage of Java for building robust and scalable applications Usage of javax.crypto.Cipher for cryptographic operations Usage of SecretKeySpec for generating secret keys in Java cryptography ...
Insecure encryption algorithm - MD5 - Java
Need Implementation of secure encryption algorithms for password hashing Context Usage of Java for building cross-platform applications Usage of java.security.MessageDigest for cryptographic hashing and message digest operations Usage of ...
Next page