CX Log_Forging @ server/router.go [master]

[github-actions[bot]]

Log_Forging issue exists @ server/router.go in branch master

*Method NewRouter at line 18 of server\router.go gets user input from element templateDir. This element’s value flows through the code without being properly sanitized or validated, and is eventually used in writing an audit log in NewRouter at line 26 of server\router.go.This may enable Log Forging.Similarity ID: 901274101

Method NewRouter at line 18 of server\router.go gets user input from element templateDir. This element’s value flows through the code without being properly sanitized or validated, and is eventually used in writing an audit log in r.HandleFunc at line 40 of server\router.go.This may enable Log Forging.Similarity ID: -1324665346*

Severity: Low

CWE:117

Vulnerability details and guidance

Internal Guidance

Checkmarx

Training Recommended Fix

Lines: 18

---

Code (Line #18):

func NewRouter(templateDir string) *mux.Router {

---

[github-actions[bot]]

Issue still exists.