The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Insecure_Storage_of_Sensitive_Data issue exists @ user-dao.js in branch master
The application takes sensitive, personal data userName, found at line 21 of /app/data/user-dao.js, and stores it in an unprotected manner, without encryption, to user at line 45 of /app/data/user-dao.js.
Insecure_Storage_of_Sensitive_Data issue exists @ user-dao.js in branch master
The application takes sensitive, personal data userName, found at line 21 of /app/data/user-dao.js, and stores it in an unprotected manner, without encryption, to user at line 45 of /app/data/user-dao.js.
Namespace: RobertMickleCx Repository: NodeGoat Repository Url: https://github.com/RobertMickleCx/NodeGoat CxAST-Project: RobertMickleCx/NodeGoat CxAST platform scan: 3f4864fd-127b-412c-8cca-4b4873ce2f29 Branch: master Application: NodeGoat Severity: HIGH State: TO_VERIFY Status: RECURRENT CWE: 933 Lines: 21 25 92 105
References Read more