-
**Command_Injection** issue exists @ **vulnerabilities/exec/source/impossible.php** in branch **master**
*The application's <?php method calls an OS (shell) command with shell_exec, at line 1 of…
ghost updated
3 years ago
-
### Describe the bug
The [Action.yml](https://github.com/Checkmarx/ast-github-action/blob/7a79600750a1da0b59cf15a38f17e011ecca9278/action.yml#L46C2-L46C2) files specifies that a cxcli variable is exp…
-
Description:
The Checkmarx 2MS tool is a powerful secret leakage detection tool that helps developers identify sensitive data and other secrets that may have been unintentionally leaked within their c…
-
**Vulnerable Package** issue exists @ **Npm\-semver\-7.3.4** in branch **main**
The package semver versions prior to 7.5.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the fun…
-
Submitted by email:
> ascx_WSDL_Creation_and_Execution platform tool but when i try and load in my custom wsdl i get these errors;
> [15:26:18] ERROR: in CSharp_FastCompiler,compileSourceCode, provid…
-
### Describe the bug
The plugin disables the fields for selecting project, branch and scan several times:
![image](https://github.com/Checkmarx/ast-vscode-extension/assets/137796808/91bb030a-8d6…
-
### Issue
The Docker image created by this action is missing required libraries for SCA resolver to run:
- `libstdc++`
- `zlib`
### Proposed solution
By embedding SCA resolver, its integr…
-
### Describe the bug
When a job is cancelled (in our case because a new commit was added to the PR, triggering another build), the temp files generated by the job are not being cleaned up, causing ou…
-
**Stored_XSS** issue exists @ **riches/pages/FilesViewer.jsp** in branch **master**
*Method reader.readLine at line 13 of riches\pages\FilesViewer.jsp gets data from the database, for the readLine …
-
**Reflected_XSS_All_Clients** issue exists @ **riches/pages/error.jsp** in branch **master**
*Method r.nextInt at line 9 of riches\pages\error.jsp gets user input for the getRequestURI element. Thi…