CSRF issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/Install.java in branch refs/heads/master
Method processRequest at line 60 of src\main\java\org\cysecurity\cspf\jvl\controller\Install.java gets a parameter from a user request from ""adminuser"". This parameter value flows through the code and is eventually used to access application state altering functionality. This may enable Cross-Site Request Forgery (CSRF).
CSRF issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/Install.java in branch refs/heads/master
Method processRequest at line 60 of src\main\java\org\cysecurity\cspf\jvl\controller\Install.java gets a parameter from a user request from ""adminuser"". This parameter value flows through the code and is eventually used to access application state altering functionality. This may enable Cross-Site Request Forgery (CSRF).
Severity: Medium
CWE:352
Vulnerability details and guidance
Checkmarx
Training Recommended Fix
Lines: 54 56 57 58 60 61
Code (Line #54):
Code (Line #56):
Code (Line #57):
Code (Line #58):
Code (Line #60):
Code (Line #61):