search

jbruinaud / WebGoatNet

WebGoat .Net for demos
0 stars 0 forks source link

CX Value_Shadowing @ WebGoatCoins/Orders.aspx.cs [master] #158

Open jbruinaud opened 4 years ago

jbruinaud commented 4 years ago

Value_Shadowing issue exists @ WebGoatCoins/Orders.aspx.cs in branch master

The "orderNumber" invoked in Page_Load in WebGoatCoins\Orders.aspx.cs at line 20 is called ambiguously, causing value shadowing.

Severity: Medium

CWE:233

Checkmarx

Lines: 88 62

Code (Line #88):

                string target_image = Request["image"];

Code (Line #62):

                string orderNumber = Request["orderNumber"];
jbruinaud commented 4 years ago

Issue still exists.

SUMMARY

Issue has total 2 vulnerabilities left to be fix (Please scroll to the top for more information)