java
Non-encrypted confidential information - Java
Need Secure storage of confidential information Context Usage of Java 1.8 for developing applications Usage of java.io.* for input and output operations in Java Usage of javax.servlet.* for Java Servlet development Usage of javax.servlet.http.* for ...
Administrative credentials stored in cache memory - Java
Need Secure storage of administrative credentials Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet.http.HttpServlet for handling HTTP requests in Java Servlets Handling of IOException ...
Sensitive information sent insecurely - Java
Need Secure transmission of sensitive information Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of java.io for input and output operations ...
Insecure encryption algorithm - SSL/TLS - Java
Need Implementation of secure encryption algorithms and disabling insecure TLS protocol versions Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.net.ssl for secure communication ...
Insecure authentication method - Basic - Java
Need Secure authentication method Context Usage of Java 8 for developing applications with enhanced features and performance improvements Usage of javax.servlet-api for building Java web applications with servlets Usage of java-base64 for encoding ...
Insecure functionality - Java
Need Secure functionality implementation Context Usage of Java for building cross-platform applications Usage of javax.servlet.http.HttpServletRequest for handling HTTP requests in Java Servlets Usage of HttpServletResponse for handling HTTP response ...
Insecure object reference - Java
Need Secure and robust authorization mechanism to prevent unauthorized access to sensitive data Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications ...
Use of software with known vulnerabilities - Java
Need Updating software and dependencies to versions without known vulnerabilities Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for developing Java web applications with Servlets ...
Stored cross-site scripting (XSS) - Java
Need Prevention of persistent cross-site scripting (XSS) attacks Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for developing Java servlets Description Non compliant code import ...
Sensitive information in source code - Java
Need Protection of sensitive information in source code Context Usage of Java for building cross-platform applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of javax.servlet.http for handling HTTP ...
Reflected cross-site scripting (XSS) - Java
Need Implementation of input validation and output encoding to prevent the execution of malicious scripts Context Usage of Java for building scalable and robust applications Usage of javax.servlet for building Java web applications with servlets ...
Cross-site request forgery - Java
Need Protection against cross-site request forgery attacks Context Usage of Java for building robust and scalable applications Usage of javax.servlet for building Java web applications with Servlet technology Usage of javax.servlet.http for handling ...
Authentication mechanism absence or evasion - Java
Need Implementation of a robust and secure authentication mechanism Context Usage of Java for building cross-platform applications Usage of javax.servlet for Java web application development Usage of javax.servlet.http for handling HTTP requests and ...
Privilege escalation - Java
Need Enhancement of role-based access control (RBAC) to prevent unauthorized privilege escalation Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications ...
Remote command execution - Java
Need Prevention of unauthorized remote command execution Context Usage of Java 8 for developing applications with enhanced features and performance improvements. Usage of javax.servlet-api for developing Java web applications with Servlets ...
Symmetric denial of service - Java
Need Prevention of service outages caused by repeated resource-intensive requests Context Usage of Java 8 for developing applications with enhanced features and performance Usage of javax.servlet-api for building Java web applications with servlets ...
Asymmetric denial of service - Java
Need The need is to implement measures that prevent or mitigate asymmetric denial of service attacks, ensuring the server remains responsive and available to legitimate users. Context Usage of Java 8 for developing applications with enhanced features ...