tsunez
commented
3 years ago Issue still exists.
SUMMARY
Issue has 4 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
Open tsunez opened 3 years ago
tsunez
commented
3 years ago Issue still exists.
Issue has 4 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
tsunez
commented
3 years ago Issue still exists.
Issue has 4 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
Unscrubbed_Secret issue exists @ iGoat-Swift/iGoat-Swift/ThirdParty/YapDatabase/Extensions/FilteredViews/YapDatabaseFilteredViewTransaction.m in branch master
Method - at line 759 of iGoat-Swift\iGoat-Swift\ThirdParty\YapDatabase\Extensions\FilteredViews\YapDatabaseFilteredViewTransaction.m defines passesFilter, which is designated to contain user passwords. However, while plaintext passwords are later assigned to passesFilter, this variable is never cleared from memory.
Severity: Low
CWE:226
Vulnerability details and guidance
Checkmarx
Recommended Fix
Lines: 800 905 1213 1054
Code (Line #800):
Code (Line #905):
Code (Line #1213):
Code (Line #1054):