python
Password change without identity check - Python
Need Stronger password change authentication Context Usage of Python 3 for developing applications and scripts Usage of Django for building web applications Description Non compliant code from django.contrib.auth.decorators import login_required from ...
Inadequate file size control - Python
Need Improved file size control mechanism Context Usage of Python 3 for developing applications and scripts Usage of Django for building web applications Description Non compliant code from django.http import HttpResponse from django.views import ...
Insecure file upload - Python
Need Secure file upload and validation Context Usage of Python 3 for developing Python applications Usage of Django for building web applications in Python Description Non compliant code from django.http import HttpResponse from ...
XPath injection - Python
Need Prevention of XPath injection attacks Context Usage of Python 3 for scripting and application development Usage of Django for building web applications in Python Usage of lxml for parsing and manipulating XML documents Description Non compliant ...
Insecure authentication method - Basic - Python
Need Secure authentication method Context Usage of Python 3 for building and running Python applications Usage of Django for building web applications in Python Description Non compliant code from django.contrib.auth.decorators import login_required ...
Insecure object reference - Python
Need Enforcement of proper access controls and authorization mechanisms Context Usage of Python 3 for writing and executing Python code Usage of Django for building web applications in Python Description Non compliant code from django.shortcuts ...
Reflected cross-site scripting (XSS) - Python
Need Implementation of input validation and output encoding to prevent XSS attacks Context Usage of Python 3 for developing applications and scripts Usage of Django for building web applications in Python Description Non compliant code from ...
Cross-site request forgery - Python
Need Prevention of unauthorized actions executed on behalf of authenticated users Context Usage of Python 3.0+ for developing Python applications Usage of Django for building web applications Description Non compliant code from django.shortcuts ...
Authentication mechanism absence or evasion - Python
Need Implementation of a robust and secure authentication mechanism Context Usage of Python 3 for building and executing Python applications Usage of Django for building web applications in Python Description Non compliant code from django.http ...
Privilege escalation - Python
Need Enhancement of role-based access control to prevent unauthorized privilege escalation Context Usage of Python 3 for writing and executing Python code Usage of Django for building web applications in Python Description Non compliant code from ...
Remote command execution - Python
Need Prevention of unauthorized remote command execution Context Usage of Python 3 for scripting and software development Usage of the os module for interacting with the operating system in Node.js Usage of Django for building web applications ...