typescript
Server side template injection - TypeScript
Need Prevention of server-side template injection attacks Context Usage of Node.js v14.0.0 for server-side JavaScript development Usage of Express for building web applications and APIs Usage of child_process for executing external commands and ...
Insecure encryption algorithm - Insecure Elliptic Curve - TypeScript
Need Secure encryption algorithm for data protection Context Usage of TypeScript for static typing and enhanced tooling in Node.js development Usage of Express for building web applications and APIs Usage of crypto for cryptographic operations and ...
Account Takeover - TypeScript
Need Enhanced authentication and access control measures to prevent unauthorized account access Context Usage of Node.js v14.0.0 for server-side JavaScript development Usage of Express for building web applications and APIs Description Non compliant ...
OS Command Injection - TypeScript
Need Prevention of OS command injection attacks Context Usage of Typescript for adding static typing to JavaScript Usage of Express for building web applications and APIs Usage of child_process for executing external commands and processes ...
Inappropriate coding practices - Unused properties - TypeScript
Need Elimination of unused properties in the codebase Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const ...
Insecurely generated token - OTP - TypeScript
Need Secure generation and transmission of OTP tokens Context Usage of TypeScript for type-checking and enhanced JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code import ...
Non-encrypted confidential information - Hexadecimal - TypeScript
Need Protection of confidential information through encryption Context Usage of Node.js v14.0.0 for server-side JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
DOM-Based cross-site scripting (XSS) - TypeScript
Need Prevention of cross-site scripting attacks through proper input validation and output encoding Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non ...
Insecure object reference - User deletion - TypeScript
Need Protection against insecure object reference vulnerabilities in user deletion functionality Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant ...
Technical information leak - Content response - TypeScript
Need Prevention of unauthorized disclosure of technical information Context Usage of TypeScript for type checking and static typing in Node.js development Usage of Express for building web applications and handling HTTP requests Description Non ...
Security controls bypass or absence - Session Invalidation - TypeScript
Need Implementation of proper security controls for session invalidation Context Usage of TypeScript for type-checking and static typing in Node.js development Usage of Express for building web applications and handling HTTP requests Description Non ...
Lack of data validation - Non Sanitized Variables - TypeScript
Need Implementation of proper input validation and sanitization Context Usage of Node.js v14.0.0 for server-side JavaScript development Usage of Express for building web applications and APIs Usage of child_process for executing external commands and ...
Lack of data validation - OTP - TypeScript
Need Implementation of proper data validation for OTP (One-Time Password) values Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non compliant code import ...
Lack of data validation - Special Characters - TypeScript
Need Implementation of input validation for special characters Context Requirement of Node.js v14.0.0 or later for running the application Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Insecure object reference - Session management - TypeScript
Need Secure session management Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app = express(); ...
Insecurely generated token - Lifespan - TypeScript
Need Securely generate session tokens with a shorter lifespan Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and handling HTTP requests Usage of jsonwebtoken for generating ...
Lack of data validation - HTML code - TypeScript
Need Implementation of proper data validation for HTML code Context Usage of Node.js v14.15.4 as the runtime environment for executing JavaScript code Usage of Express for building web applications and APIs Description Non compliant code import ...
Insecurely generated token - Validation - TypeScript
Need Secure token generation and validation Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Usage of jsonwebtoken for generating and verifying JSON Web Tokens (JWT) ...
Enabled default configuration - TypeScript
Need Disable default configurations to prevent unauthorized access and information disclosure Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non ...
Insecure object reference - Data - TypeScript
Need Secure access control and data validation Context Usage of TypeScript for type-checking and enhanced JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; ...
Insecure object reference - Files - TypeScript
Need Secure access control for files Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app = express(); ...
Security controls bypass or absence - Data creation - TypeScript
Need Enforcement of proper security controls for data creation Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Insecure functionality - Session management - TypeScript
Need Secure session management Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Usage of jsonwebtoken for generating and verifying JSON Web Tokens (JWT) Description Non ...
Concurrent sessions control bypass - TypeScript
Need Enforcement of concurrent session control Context Usage of TypeScript 3.0 for static typing and advanced features in JavaScript development Usage of Express for building web applications and handling HTTP requests Usage of express-session for ...
Authentication mechanism absence or evasion - Redirect - TypeScript
Need Implementation of a secure and robust authentication mechanism Context Usage of TypeScript for type-checking and enhanced JavaScript development Usage of Express for request handling and server creation Description Non compliant code import ...
SQL injection - Code - TypeScript
Need Implementation of proper input validation and the use of parameterized statements or stored procedures to prevent SQL injection attacks. Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building ...
Weak credential policy - Password Change Limit - TypeScript
Need Enforce a password change limit policy Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app = ...
Technical information leak - Logs - TypeScript
Need Prevention of unauthorized access to system logs Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Usage of fs for file system operations Description Non compliant ...
Insecure object reference - Financial information - TypeScript
Need Secure access to financial information Context Usage of TypeScript for type-checking and adding static typing to JavaScript Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; ...
Insecure object reference - Personal information - TypeScript
Need Protection of personal information from unauthorized access and modification Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import ...
Non-encrypted confidential information - Base 64 - TypeScript
Need Secure storage of confidential information Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Usage of base-64 for encoding and decoding data in base64 format ...
Automatic information enumeration - Personal Information - TypeScript
Need Prevention of unauthorized access to personal information Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Session Fixation - TypeScript
Need Prevention of session hijacking Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code import express from 'express'; const ...
Sensitive information sent via URL parameters - Session - TypeScript
Need Secure transmission of sensitive information in session tokens Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Restricted fields manipulation - TypeScript
Need Prevention of unauthorized access and manipulation of restricted fields Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express ...
Insecure functionality - Fingerprint - TypeScript
Need Enforce secure and controlled user data updates Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code import express from ...
Insecure functionality - Masking - TypeScript
Need Secure data masking Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code import express from 'express'; const app = ...
Insecure functionality - Password management - TypeScript
Need Secure password management Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app = express(); ...
Insecure functionality - File Creation - TypeScript
Need Enforce server-side validation and authorization for restricted functionality Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non ...
Insecure encryption algorithm - DSA - TypeScript
Need Implementation of a secure encryption algorithm Context Usage of Node.js v14.0.0 for server-side JavaScript development Usage of Express for building web applications and APIs Usage of crypto for cryptographic operations Description Non ...
Next page