typescript
Automatic information enumeration - Credit Cards - TypeScript
Need Enhancement of credit card validation and security measures Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code import ...
Non-encrypted confidential information - Credentials - TypeScript
Need Secure storage of credentials Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app = express(); ...
Non-encrypted confidential information - Credit Cards - TypeScript
Need Secure encryption and masking of credit card information Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Authentication mechanism absence or evasion - OTP - TypeScript
Need Implementation of a secure and validated OTP (One-Time Password) authentication mechanism Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non ...
Technical information leak - Errors - TypeScript
Need Prevention of technical information leaks through error messages Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non compliant code import express ...
Technical information leak - Print Functions - TypeScript
Need Prevention of sensitive information leakage through print functions Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express ...
Business information leak - Personal Information - TypeScript
Need Protection of personal information from unauthorized access or leakage Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non compliant code import ...
Business information leak - Users - TypeScript
Need Protection of business information and user data confidentiality Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Business information leak - Credit Cards - TypeScript
Need Protection of sensitive business information and customer credit card data Context Usage of TypeScript for type-checking and static typing in JavaScript development Usage of Express for building web applications and APIs Description Non ...
Business information leak - JWT - TypeScript
Need Protection of sensitive business information within JWT Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Usage of jsonwebtoken for generating and verifying JSON ...
Asymmetric denial of service - ReDoS - TypeScript
Need Mitigation of Regular Expression Denial of Service (ReDoS) attacks Context Usage of TypeScript for static typing and enhanced developer experience in Node.js development Usage of Express for building web applications and APIs Description Non ...
Insufficient data authenticity validation - TypeScript
Need Enhanced data authenticity validation and verification Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; ...
Unauthorized access to files - TypeScript
Need Prevention of unauthorized access to files and functionalities Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Traceability loss - TypeScript
Need Enhancement of traceability and logging capabilities Context Usage of TypeScript for static typing and enhanced tooling in Node.js development Usage of Express for building web applications and APIs Description Non compliant code import express ...
Lack of data validation - Numbers - TypeScript
Need Implementation of robust data validation for numbers Context Usage of TypeScript for type-checking and enhancing JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code ...
Lack of data validation - Dates - TypeScript
Need Implementation of robust data validation for date fields Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Lack of data validation - Input Length - TypeScript
Need Implementation of input length validation Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code import express from ...
Lack of data validation - Host Header Injection - TypeScript
Need Implementation of strict input validation and sanitization to prevent Host Header Injection Context Requirement of Node.js v14.0.0 or higher for running the application Usage of Express for building web applications and APIs Description Non ...
Lack of data validation - Responses - TypeScript
Need Need for data validation and sanitization in response handling Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Lack of data validation - Session Cookie - TypeScript
Need Secure data validation for session cookies Context Usage of TypeScript 3.8.3 for statically typed JavaScript development Usage of Express for building web applications and APIs Usage of cookie-parser for parsing and handling cookies in Express ...
Lack of data validation - Source Code - TypeScript
Need Implementation of robust data validation in the source code Context Usage of Node.js v14.0.0 for server-side JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
Lack of data validation - TypeScript
Need Implementation of robust data validation mechanisms Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and handling HTTP requests Description Non compliant code import ...
Uncontrolled external site redirect - TypeScript
Need Controlled and secure external site redirects Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code import express from ...
SQL Injection - Headers - TypeScript
Need Prevention of SQL injection in the idClient header and application fields Context Usage of Node.js v14.17.0 for server-side JavaScript development Usage of Express for building web applications and APIs Usage of MySQL for database connectivity ...
Time-based SQL Injection - TypeScript
Need Prevention of time-based SQL injection attacks Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Usage of MySQL for database connectivity and query execution ...
Insecure or unset HTTP headers - Accept - TypeScript
Need Enforcement of secure and restricted HTTP headers for Accept Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from ...
SQL injection - TypeScript
Need Implementation of secure coding practices to prevent SQL injection attacks Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Usage of MySQL for database connectivity ...
Inappropriate coding practices - Eval function - TypeScript
Need Secure input validation and sanitization Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app ...
Insecure exceptions - Empty or no catch - TypeScript
Need Proper exception handling and error management Context Usage of TypeScript for adding static typing to JavaScript Usage of Express for building web applications and handling HTTP requests Description Non compliant code import express from ...
Inappropriate coding practices - TypeScript
Need Enforcement of proper encapsulation in coding practices Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; ...
Insecure or unset HTTP headers - Cache Control - TypeScript
Need Implementation of secure and appropriate Cache Control HTTP headers Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Description Non compliant code ...
Insecure encryption algorithm - Perfect Forward Secrecy - TypeScript
Need Implementation of secure encryption algorithms with Perfect Forward Secrecy Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Usage of HTTPS for secure communication ...
Insecure or unset HTTP headers - Strict Transport Security - TypeScript
Need Enforce secure communication by setting the Strict-Transport-Security HTTP header with an appropriate max-age value. Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and ...
Lack of data validation - Type confusion - TypeScript
Need Implementation of strict data validation and type checking Context Usage of Node.js v14 for server-side JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; ...
Race condition - TypeScript
Need Prevention of race conditions in the system Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app = ...
Local file inclusion - TypeScript
Need Prevention of unauthorized access to sensitive files on the server Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and handling HTTP requests Usage of path for working with ...
HTTP parameter pollution - TypeScript
Need Prevention of HTTP parameter pollution Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const app = ...
Security controls bypass or absence - TypeScript
Need Implementation of robust security controls Context Usage of TypeScript for type-checking and compiling JavaScript code Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const ...
Out-of-bounds read - TypeScript
Need Prevention of out-of-bounds read vulnerabilities Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Description Non compliant code import express from 'express'; const ...
LDAP injection - TypeScript
Need Prevention of LDAP injection attacks Context Usage of TypeScript for statically typed JavaScript development Usage of Express for building web applications and APIs Usage of ldapjs for LDAP (Lightweight Directory Access Protocol) operations in ...
Next page