github-actions[bot]
commented
1 month ago Issue still exists.
Open github-actions[bot] opened 1 month ago
github-actions[bot]
commented
1 month ago Issue still exists.
Hardcoded_Password_in_Connection_String issue exists @ vulnerable/sql.go in branch master
The application contains hardcoded connection details, "file::memory:?cache=shared", at line 29 of vulnerable\sql.go. This connection string contains a hardcoded password, which is used in PrepareSQLDB at line 29 of vulnerable\sql.go to connect to a database server with "file::memory:?cache=shared". This can expose the database password, and impede proper password management.Similarity ID: -531879776
Severity: Medium
CWE:547
Vulnerability details and guidance
Internal Guidance
Checkmarx
Training Recommended Fix
Lines: 29
Code (Line #29):