Open tsunez opened 4 years ago
Issue still exists.
Issue has 1 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
Issue still exists.
Issue has 1 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
Autocorrection_Keystroke_Logging issue exists @ iGoat-Swift/iGoat-Swift/Source/Exercises/Binary Patching/BinaryPatchingVC.swift in branch master
The UI element passwordTextField at line 4 of iGoat-Swift\iGoat-Swift\Source\Exercises\Binary Patching\BinaryPatchingVC.swift provides interactive input of sensitive text data. Autocorrection dictionary may cache the sensitive information, and make it accessible to attackers.
Severity: Medium
CWE:359
Vulnerability details and guidance
Checkmarx
Recommended Fix
Lines: [4](https://github.com/Custodela/iGoat-Swift/blob/master/iGoat-Swift/iGoat-Swift/Source/Exercises/Binary Patching/BinaryPatchingVC.swift#L4)
[Code (Line #4):](https://github.com/Custodela/iGoat-Swift/blob/master/iGoat-Swift/iGoat-Swift/Source/Exercises/Binary Patching/BinaryPatchingVC.swift#L4)