search

mariana-bteixeira / python-mini-projects

A collection of simple python mini projects to enhance your python skills
https://python-world.github.io/python-mini-projects/#/
MIT License
0 stars 0 forks source link

CX Object_Access_Violation @ projects/Hashing_passwords/hashing_passwords.py [master] #13

Open mariana-bteixeira opened 7 months ago

mariana-bteixeira commented 7 months ago

Object_Access_Violation issue exists @ projects/Hashing_passwords/hashing_passwords.py in branch master

Method parser.parse_args at line 9 of projects\Hashing_passwords\hashing_passwords.py gets user input from element parse_args. This input is used by the application, without being validated, to access arbitrary attributes of potentially sensitive objects.Similarity ID: -1648249596

Severity: Medium

CWE:610

Vulnerability details and guidance

Internal Guidance

Checkmarx

Training Recommended Fix

Lines: 9

Code (Line #9):

args = parser.parse_args()
mariana-bteixeira commented 7 months ago

Issue still exists.