CX Unchecked_Input_for_Loop_Condition @ src/main/java/org/cysecurity/cspf/jvl/controller/xxe.java [refs/heads/master]

[github-actions[bot]]

Unchecked_Input_for_Loop_Condition issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/xxe.java in branch refs/heads/master

Method processRequest at line 44 of src\main\java\org\cysecurity\cspf\jvl\controller\xxe.java gets user input from element getInputStream . This element’s value flows through the code without being validated, and is eventually used in a loop condition in processRequest at line 53 of src\main\java\org\cysecurity\cspf\jvl\controller\xxe.java. This constitutes an Unchecked Input for Loop Condition.

Severity: Medium

CWE:606

Vulnerability details and guidance

Checkmarx

Training Recommended Fix

Lines: 44

---

Code (Line #44):

          InputStream xml=request.getInputStream();

---

[github-actions[bot]]

Issue still exists.