Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy @ /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/UnintendedFileDisclosureController.java #3210
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Checkmarx (SAST): Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Security Issue: Read More about Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Checkmarx Project: AaronZhouYu/TotallySecureApp
Repository URL: https://github.com/AaronZhouYu/TotallySecureApp
Branch: main
Scan ID: d9fa6dd5-d23b-4436-b75a-41a016305f39
The method serverinfo found at line 21 in /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/UnintendedFileDisclosureController.java sets an overly permissive CORS access control origin header.
Result #1:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. serverinfo: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/UnintendedFileDisclosureController.java[21,25]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
Result #2:
Severity: LOW
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. clientinfo: /src/main/java/org/t246osslab/easybuggy4sb/vulnerabilities/UnintendedFileDisclosureController.java[15,25]
Review result in Checkmarx One: Spring_Overly_Permissive_Cross_Origin_Resource_Sharing_Policy
The text was updated successfully, but these errors were encountered: