search

jquga / javarefactoring

Automatically exported from code.google.com/p/javarefactoring
0 stars 0 forks source link

Security, input correctness #25

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
Across entire application. Examine all input elements

Original issue reported on code.google.com by kalashni...@gmail.com on 28 Jul 2009 at 1:54

GoogleCodeExporter commented 9 years ago 
Somewhere in th esystem text id is passed. Scrren is out with base64+user guid
combination

Original comment by kalashni...@gmail.com on 3 Aug 2009 at 8:39

GoogleCodeExporter commented 9 years ago 
Addition to prev comment. Search for uidPk in all *.jsp files. This will show
security holes. Use some common algorithm to encode the ids

Original comment by kalashni...@gmail.com on 4 Aug 2009 at 2:23

GoogleCodeExporter commented 9 years ago

Original comment by kalashni...@gmail.com on 7 Apr 2011 at 8:52

GoogleCodeExporter commented 9 years ago 
These bugs belong to the version 1 Myenvoc

Original comment by kalashni...@gmail.com on 7 Apr 2011 at 8:55