java
Insecure or unset HTTP headers - Strict Transport Security - Java
Need Enforcement of Strict Transport Security (HSTS) headers Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with servlets Usage of javax.servlet.http for handling HTTP requests ...
Insecurely generated cookies - Secure - Java
Need Secure generation and transmission of cookies Context Usage of Java for building robust and scalable applications Usage of HttpServletRequest for handling HTTP requests in Java Servlets Usage of HttpServletResponse for handling HTTP responses in ...
Insecurely generated cookies - SameSite - Java
Need Secure generation of cookies with proper SameSite attribute Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for developing Java Servlet applications Description Non compliant ...
Insecurely generated cookies - HttpOnly - Java
Need Secure generation of cookies with the HttpOnly attribute Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications with servlets Description Non ...
Lack of data validation - Type confusion - Java
Need Implementation of robust data validation and type checking mechanisms Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of java.io for ...
Lack of isolation methods - Java
Need Implementation of robust isolation methods for running applications Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications using the Servlet API ...
Directory listing - Java
Need Prevention of unauthorized access to directory listings Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of java.io for input and output ...
Race condition - Java
Need Ensuring proper synchronization and ordering of inputs to prevent race conditions Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications using the ...
Local file inclusion - Java
Need Prevention of unauthorized access to sensitive files on the server Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Description Non compliant code ...
Email flooding - Java
Need Prevention of email flooding and inbox saturation Context Usage of Java for building cross-platform applications Usage of javax.mail for sending and receiving emails in Java applications Description Non compliant code import javax.mail.*; import ...
HTTP parameter pollution - Java
Need Prevention of HTTP parameter pollution Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of javax.servlet.http for handling HTTP requests and ...
Improper dependency pinning - Java
Need Enforce proper dependency pinning and version control Context Usage of Java for building scalable and robust applications Usage of javax.servlet for building Java web applications with servlets Usage of javax.servlet.http for handling HTTP ...
Metadata with sensitive information - Java
Need Protection of sensitive information in metadata files Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for developing Java web applications with Servlet technology Description ...
Regulation infringement - Java
Need Compliance with regulatory requirements Context Usage of Java 1.8 for developing applications in the Java programming language Usage of javax.servlet-api for Java Servlet development Description Non compliant code import ...
Unverifiable files - Java
Need Ensuring verifiability of files in the repository Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications Usage of java.io for input and output operations in Java programming ...
Security controls bypass or absence - Java
Need Implementation of robust security controls Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.servlet-api for building Java web applications with Servlets Description Non ...
Phishing - Java
Need Enhanced user awareness and education on phishing attacks Context Usage of Java 1.6 for developing applications Usage of javax.servlet.http.HttpServletRequest for handling HTTP requests in a Java Servlet application Usage of java.io.IOException ...
Improper type assignation - Java
Need Enforce proper type assignment in the source code Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with servlets Usage of java.io for input/output operations in Java ...
Out-of-bounds read - Java
Need Prevention of out-of-bounds read vulnerabilities Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of java.io for input and output operations in ...
HTTP request smuggling - Java
Need Consistent and secure processing of HTTP requests across all entities involved Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications Usage of java.io for input and output ...
Improper control of interaction frequency - Java
Need Enforcement of rate limiting to control user interaction frequency Context Usage of Java for building cross-platform applications Usage of javax.servlet for Java web application development Usage of javax.servlet.http for handling HTTP requests ...
LDAP injection - Java
Need Prevention of unauthorized data manipulation through LDAP queries Context Usage of Java for building robust and scalable applications Usage of javax.naming.directory.DirContext for accessing and manipulating directory services Usage of ...
NoSQL injection - Java
Need Prevention of NoSQL injection attacks Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Usage of mongodb-driver for interacting with MongoDB ...
Email uniqueness not properly verified - Java
Need Validation of email uniqueness during registration process Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications with Servlets Usage of java.io ...
Lack of protection against deletion - Java
Need Implementation of safeguards against accidental deletion Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications with Servlets Description Non ...
Server-side request forgery (SSRF) - Java
Need Prevention of unauthorized server-side requests to arbitrary domains Context Usage of Java for building cross-platform applications and enterprise-level software Usage of java.io.BufferedReader for reading text from a character-input stream ...
External control of file name or path - Java
Need Prevention of unauthorized access and manipulation of file paths and names Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Usage of java.io for ...
Insecure deserialization - Java
Need Secure deserialization process Context Usage of Java 8 for developing applications in the Java programming language Usage of javax.servlet-api for building Java web applications with Servlets Description Non compliant code import ...
Data uniqueness not properly verified - Java
Need Enforce proper data uniqueness verification Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications Usage of java.io for input/output operations in Java programming ...
Insecure encryption algorithm - Cipher Block Chaining - Java
Need Implementation of secure encryption algorithms with strong cipher block chaining Context Usage of Java for building scalable and robust applications Usage of javax.crypto.Cipher for cryptographic operations Usage of SecretKeySpec for creating a ...
Hidden fields manipulation - Java
Need Protection against hidden fields manipulation Context Usage of Java 1.0 for developing applications and software solutions Usage of javax.servlet for handling HTTP requests and responses in Java web applications Usage of javax.servlet.http for ...
Insecure encryption algorithm - Anonymous cipher suites - Java
Need Implementation of secure encryption algorithms and disallowing anonymous cipher suites Context Usage of Java for building scalable and robust applications Usage of javax.net.ssl for secure communication over HTTPS Description Non compliant code ...
Log injection - Java
Need Secure logging mechanism Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of Apache Log4j for logging and debugging purposes Description Non ...
CSV injection - Java
Need Prevention of CSV injection attacks Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for developing Java web applications using Servlet technology Description Non compliant ...
Lack of data validation - Trust boundary violation - Java
Need Enforce strict data validation and ensure proper trust boundaries Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with servlets Usage of javax.servlet.http for handling ...
Privacy violation - Java
Need Ensuring privacy compliance and protection Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of javax.servlet.http for handling HTTP requests ...
Account lockout - Java
Need Prevention of unauthorized account lockouts Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for developing Java web applications with Servlets Usage of JavaEE API for building ...
XML injection (XXE) - Java
Need Prevention of XML injection attacks Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.servlet-api for Java Servlet development Usage of javax.xml.parsers for XML parsing and ...
Insecurely deleted files - Java
Need Secure file deletion Context Usage of Java for building cross-platform applications Usage of javax.servlet.http.HttpServletRequest for handling HTTP requests in Java Servlets Usage of HttpServletResponse for handling HTTP responses in Java ...
Lack of multi-factor authentication - Java
Need Implementation of multi-factor authentication for critical services Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for Java Servlet development Description Non compliant code ...
Next page