Update ForgotPassword.jsp by cx-sam-headrick · Pull Request #3 · cx-sam-headrick/JavaVulnerableLab

cx-sam-headrick · 2024-09-17T20:10:10Z

No description provided.

cx-sam-headrick · 2024-09-17T20:14:37Z

Checkmarx One – Scan Summary & Details – 4864e850-3194-4d8c-ba3e-1bf9401c32ec

New Issues

Issue	Source File / Package	Checkmarx Insight
CVE-2016-10707	Npm-jquery-1.6.4	Vulnerable Package
CVE-2023-1973	Maven-io.undertow:undertow-core-2.0.9.Final	Vulnerable Package
CVE-2023-3223	Maven-io.undertow:undertow-core-2.0.9.Final	Vulnerable Package
CVE-2024-1635	Maven-io.undertow:undertow-core-2.0.9.Final	Vulnerable Package
CVE-2012-6708	Npm-jquery-1.6.4	Vulnerable Package
CVE-2015-9251	Npm-jquery-1.6.4	Vulnerable Package
CVE-2019-11358	Npm-jquery-1.6.4	Vulnerable Package
CVE-2020-11022	Npm-jquery-1.6.4	Vulnerable Package
CVE-2020-11023	Npm-jquery-1.6.4	Vulnerable Package
CVE-2020-7656	Npm-jquery-1.6.4	Vulnerable Package
CVE-2021-20220	Maven-io.undertow:undertow-core-2.0.9.Final	Vulnerable Package
Cxf0b588a3-5c6f	Npm-jquery-1.6.4	Vulnerable Package

Fixed Issues

Severity	Issue	Source File / Package
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 37
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 38
	SQL_Injection	/src/main/webapp/changeCardDetails.jsp: 39
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	SQL_Injection	/src/main/webapp/ForgotPassword.jsp: 42
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 52
	Second_Order_SQL_Injection	/src/main/webapp/admin/adminlogin.jsp: 19
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	Stored_XSS	/src/main/webapp/ForgotPassword.jsp: 42
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	CSRF	/src/main/webapp/changeCardDetails.jsp: 37
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 44
	CSRF	/src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java: 43
	CSRF	/src/main/webapp/admin/adminlogin.jsp: 11
	CSRF	/src/main/webapp/changeCardDetails.jsp: 39
	CSRF	/src/main/webapp/changeCardDetails.jsp: 38
	Heap_Inspection	/src/main/webapp/vulnerability/csrf/changepassword.jsp: 34
	Heap_Inspection	/src/main/webapp/vulnerability/csrf/changepassword.jsp: 34
	Heap_Inspection	/src/main/webapp/vulnerability/csrf/changepassword.jsp: 34
	Heap_Inspection

More results are available on AST platform

Update ForgotPassword.jsp

89672a0

Update changeCardDetails.jsp

92d5df6

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update ForgotPassword.jsp#3

Update ForgotPassword.jsp#3
cx-sam-headrick wants to merge 2 commits intomasterfrom
SamHeadrickCx-patch-3

cx-sam-headrick commented Sep 17, 2024

Uh oh!

cx-sam-headrick commented Sep 17, 2024 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

cx-sam-headrick commented Sep 17, 2024

Uh oh!

cx-sam-headrick commented Sep 17, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

New Issues

Fixed Issues

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

cx-sam-headrick commented Sep 17, 2024 •

edited

Loading