-
No CSRF protection was found on the authentication page. As a result, an attacker can supply his access token to a user and force the user to be logged in as the attacker, or, alternatively, supply an…
-
**CGI_Stored_XSS** issue exists @ **riches/pages/Backup.jsp** in branch **master**
*Unvalidated DB output was found in line number 11 in riches\pages\Backup.jsp file. A possible XSS exploitation wa…
-
**CGI_Stored_XSS** issue exists @ **riches/pages/FilesViewer.jsp** in branch **master**
*Unvalidated DB output was found in line number 13 in riches\pages\FilesViewer.jsp file. A possible XSS explo…
-
**CGI_Reflected_XSS_All_Clients** issue exists @ **riches/pages/common/hidden_AdminControl.jsp** in branch **master**
*Unvalidated input was found in line number 24 in riches\pages\common\hidden_Ad…
-
**CGI_Reflected_XSS_All_Clients** issue exists @ **riches/WEB-INF/src/java/com/checkmarx/samples/riches/legacy/mail/SendMail.java** in branch **master**
*Unvalidated input was found in line number …
-
**CGI_Stored_XSS** issue exists @ **riches/WEB-INF/src/java/com/checkmarx/samples/riches/webservices/BannerAdClient.java** in branch **master**
*Unvalidated DB output was found in line number 18 in…
-
**CGI_Stored_XSS** issue exists @ **riches/WEB-INF/src/java/com/checkmarx/samples/riches/model/ProfileService.java** in branch **master**
*Unvalidated DB output was found in line number 192 in rich…
-
**CGI_Reflected_XSS_All_Clients** issue exists @ **riches/pages/content/oper/Admin.jsp** in branch **master**
*Unvalidated input was found in line number 30 in riches\pages\content\oper\Admin.jsp f…
-
**CGI_Reflected_XSS_All_Clients** issue exists @ **riches/pages/content/oper/Newsletter.jsp** in branch **master**
*Unvalidated input was found in line number 18 in riches\pages\content\oper\Newsle…
-
**CGI_Stored_XSS** issue exists @ **riches/WEB-INF/src/java/com/checkmarx/samples/riches/model/AccountService.java** in branch **master**
*Unvalidated DB output was found in line number 180 in rich…