Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy @ /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java #3122
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Checkmarx (SAST): Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Security Issue: Read More about Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Checkmarx Project: AaronZhouYu/TotallySecureApp
Repository URL: https://github.com/AaronZhouYu/TotallySecureApp
Branch: main
Scan ID: d9fa6dd5-d23b-4436-b75a-41a016305f39
The method op2 found at line 59 in /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java sets an overly permissive CORS access control origin header.
Result #1:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. op2: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[59,19]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #2:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. op1: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[54,19]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #3:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. internal: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[49,19]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #4:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. add: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[44,16]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #5:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. runCommand: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[37,19]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #6:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. multiply: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[31,16]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #7:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. getIP: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[25,19]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #8:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. getUser: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[20,19]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #9:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. getTime: /src/main/java/org/t246osslab/easybuggy4sb/controller/CxController.java[15,19]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
The text was updated successfully, but these errors were encountered: