Log_Forging issue exists @ server/router.go in branch master
*Method NewRouter at line 18 of server\router.go gets user input from element templateDir. This element’s value flows through the code without being properly sanitized or validated, and is eventually used in writing an audit log in NewRouter at line 26 of server\router.go.This may enable Log Forging.Similarity ID: 901274101
Method NewRouter at line 18 of server\router.go gets user input from element templateDir. This element’s value flows through the code without being properly sanitized or validated, and is eventually used in writing an audit log in r.HandleFunc at line 40 of server\router.go.This may enable Log Forging.Similarity ID: -1324665346*
Log_Forging issue exists @ server/router.go in branch master
*Method NewRouter at line 18 of server\router.go gets user input from element templateDir. This element’s value flows through the code without being properly sanitized or validated, and is eventually used in writing an audit log in NewRouter at line 26 of server\router.go.This may enable Log Forging.Similarity ID: 901274101
Method NewRouter at line 18 of server\router.go gets user input from element templateDir. This element’s value flows through the code without being properly sanitized or validated, and is eventually used in writing an audit log in r.HandleFunc at line 40 of server\router.go.This may enable Log Forging.Similarity ID: -1324665346*
Severity: Low
CWE:117
Vulnerability details and guidance
Internal Guidance
Checkmarx
Training Recommended Fix
Lines: 18
Code (Line #18):