Stored_XSS @ /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java #17
Comments
SamHeadrickCx
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Checkmarx (SAST): Stored_XSS
Security Issue: Read More about Stored_XSS
Checkmarx Project: SamHeadrickCx/easybuggy4sb
Repository URL: https://github.com/SamHeadrickCx/easybuggy4sb
Branch: master
Scan ID: 94cbf8fd-fbe8-49c7-9c55-da0658f9cbfc
The method process embeds untrusted data in generated output with mav, at line 53 of /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java. This untrusted data is embedded into the output without proper sanitization or encoding, enabling an attacker to inject malicious code into the generated web-page.
The attacker would be able to alter the returned web page by saving malicious data in a data-store ahead of time. The attacker's modified data is then read from the database by the selectUsers method with query, at line 58 of /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java. This untrusted data then flows through the code straight to the output web page, without sanitization.
This can enable a Stored Cross-Site Scripting (XSS) attack.
Result 1:
Severity: HIGH
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. query: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[58,28]
2. selectUsers: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[38,35]
3. users: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[38,16]
4. users: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[39,26]
5. users: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[42,32]
6. addObject: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[42,19]
7. mav: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[42,6]
8. mav: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/SQLInjectionController.java[53,10]
Review result in Checkmarx One: Stored_XSS
The text was updated successfully, but these errors were encountered: