Empty_Password_In_Connection_String issue exists @ root/product.jsp in branch master
The application uses the empty password """" for authentication purposes, either using it to verify users' identities, or to access another remote system. This empty password is set at line 10 of root\product.jsp appears in the code, cannot be changed without rebuilding the application and indicates its associated account is exposed.
Empty_Password_In_Connection_String issue exists @ root/product.jsp in branch master
The application uses the empty password """" for authentication purposes, either using it to verify users' identities, or to access another remote system. This empty password is set at line 10 of root\product.jsp appears in the code, cannot be changed without rebuilding the application and indicates its associated account is exposed.
Severity: Low
CWE:259
Vulnerability details and guidance
Checkmarx
Lines: 10
Code (Line #10):