Open mend-for-github-com[bot] opened 6 days ago
Latest Scan: 2024-09-23 07:58am Total Findings: 33 | New Findings: 0 | Resolved Findings: 0 Tested Project Files: 427 Detected Programming Languages: 2 (Java*, JavaScript / TypeScript*)
The list below presents the 10 most relevant findings that need your attention. To view information on the remaining findings, navigate to the Mend Application.
Code Security Report
Scan Metadata
Latest Scan: 2024-09-23 07:58am Total Findings: 33 | New Findings: 0 | Resolved Findings: 0 Tested Project Files: 427 Detected Programming Languages: 2 (Java*, JavaScript / TypeScript*)
Most Relevant Findings
Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson2.java#L57-L621 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson2.java#L55 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson2.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson2.java#L59 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson2.java#L62Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson4.java#L58-L631 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson4.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson4.java#L57 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson4.java#L60 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson4.java#L63Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5.java#L68-L731 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5.java#L65 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5.java#L67 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5.java#L70 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5.java#L73Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5b.java#L66-L711 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5b.java#L51 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5b.java#L52 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5b.java#L55 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5b.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5b.java#L58 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5b.java#L71Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/Servers.java#L67-L721 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/Servers.java#L68 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/Servers.java#L72Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L62-L673 Data Flow/s detected
View Data Flow 1
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L51 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L52 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L60 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L67View Data Flow 2
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/SqlOnlyInputValidation.java#L48 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/SqlOnlyInputValidation.java#L52 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L60 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L67View Data Flow 3
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/SqlOnlyInputValidationOnKeywords.java#L48 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/SqlOnlyInputValidationOnKeywords.java#L49 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/mitigation/SqlOnlyInputValidationOnKeywords.java#L53 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L60 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionLesson6a.java#L67Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5a.java#L57-L621 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5a.java#L53 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5a.java#L54 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5a.java#L57 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5a.java#L60 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson5a.java#L62Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionChallenge.java#L60-L651 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionChallenge.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionChallenge.java#L63 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/advanced/SqlInjectionChallenge.java#L65Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson10.java#L58-L631 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson10.java#L52 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson10.java#L53 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson10.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson10.java#L58 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson10.java#L63Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Vulnerable Code
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson3.java#L60-L651 Data Flow/s detected
https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson3.java#L56 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson3.java#L57 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson3.java#L60 https://github.com/ciso-appsec-mend-evaluation/WebGoat/blob/2f91b2190cf1e2591b1ecb6381191c5dee7f1857/src/main/java/org/owasp/webgoat/lessons/sql_injection/introduction/SqlInjectionLesson3.java#L65Secure Code Warrior Training Material
● Training ▪ [Secure Code Warrior SQL Injection Training](https://portal.securecodewarrior.com/?utm_source=partner-integration:mend&partner_id=mend#/contextual-microlearning/web/injection/sql/java/vanilla) ● Videos ▪ [Secure Code Warrior SQL Injection Video](https://media.securecodewarrior.com/v2/module_01_sql_injection.mp4) ● Further Reading ▪ [OWASP SQL Injection Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html) ▪ [OWASP SQL Injection](https://owasp.org/www-community/attacks/SQL_Injection) ▪ [OWASP Query Parameterization Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html)Findings Overview