search

blockchain / blockchain-wallet-v4-frontend

Blockchain.com's open source, non-custodial Wallet
https://login.blockchain.com
GNU Affero General Public License v3.0
750 stars 506 forks source link

![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png) #6372

Closed AbuKram032012 closed 1 month ago

AbuKram032012 commented 1 month ago 
          ![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png)

Checkmarx One – Scan Summary & Detailsc7e6fd21-6d5a-4be4-829c-041d8c02cf14

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2022-0144 Npm-shelljs-0.8.4 Vulnerable Package
MEDIUM Cx41fbf2f3-5595 Npm-shelljs-0.8.4 Vulnerable Package
LOW Client_Hardcoded_Domain /legacy-pages/import-wallet.html: 31 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/RecoverWallet/RecoveryOptions/index.tsx: 230 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/layouts/Auth/components/Footer/Help/index.tsx: 18 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/Settings/General/TermsOfService/index.tsx: 39 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/Settings/General/PrivacyPolicy/index.tsx: 39 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/Settings/General/About/index.tsx: 36 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/layouts/Auth/components/Footer/Version/index.tsx: 20 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 94 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 77 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 45 Attack Vector
LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 32 Attack Vector

Originally posted by @sstephanou-bc in https://github.com/blockchain/blockchain-wallet-v4-frontend/issues/6370#issuecomment-2103154216

AbuKram032012 commented 1 month ago 
          ![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png)

Checkmarx One – Scan Summary & Detailsc7e6fd21-6d5a-4be4-829c-041d8c02cf14

New Issues

Severity Issue Source File / Package Checkmarx Insight HIGH CVE-2022-0144 Npm-shelljs-0.8.4 Vulnerable Package MEDIUM Cx41fbf2f3-5595 Npm-shelljs-0.8.4 Vulnerable Package LOW Client_Hardcoded_Domain /legacy-pages/import-wallet.html: 31 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/RecoverWallet/RecoveryOptions/index.tsx: 230 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/layouts/Auth/components/Footer/Help/index.tsx: 18 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/Settings/General/TermsOfService/index.tsx: 39 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/Settings/General/PrivacyPolicy/index.tsx: 39 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/scenes/Settings/General/About/index.tsx: 36 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/layouts/Auth/components/Footer/Version/index.tsx: 20 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 94 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 77 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 45 Attack Vector LOW Unsafe_Use_Of_Target_blank /packages/blockchain-wallet-v4-frontend/src/components/Terms/index.tsx: 32 Attack Vector Originally posted by @sstephanou-bc in #6370 (comment)