The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Insecure_Storage_of_Sensitive_Data issue exists @ profile-dao.js in branch master
The application takes sensitive, personal data dob, found at line 65 of /app/data/profile-dao.js, and stores it in an unprotected manner, without encryption, to CxAssociativeArray_3a9a9533 at line 80 of /app/data/profile-dao.js.
Insecure_Storage_of_Sensitive_Data issue exists @ profile-dao.js in branch master
The application takes sensitive, personal data dob, found at line 65 of /app/data/profile-dao.js, and stores it in an unprotected manner, without encryption, to CxAssociativeArray_3a9a9533 at line 80 of /app/data/profile-dao.js.
Namespace: RobertMickleCx Repository: NodeGoat Repository Url: https://github.com/RobertMickleCx/NodeGoat CxAST-Project: RobertMickleCx/NodeGoat CxAST platform scan: 421abb05-2701-4c6b-8cb3-89f91b91b3aa Branch: master Application: NodeGoat Severity: HIGH State: TO_VERIFY Status: RECURRENT CWE: 933 Lines: 53 62 65
References Read more