CX Privacy_Violation @ webgoat-lessons/secure-passwords/src/main/java/org/owasp/webgoat/secure_password/SecurePasswordsAssignment.java [develop]

[mgonzalezcx]

Privacy_Violation issue exists @ webgoat-lessons/secure-passwords/src/main/java/org/owasp/webgoat/secure_password/SecurePasswordsAssignment.java in branch develop

Method completed at line 43 of webgoat-lessons\secure-passwords\src\main\java\org\owasp\webgoat\secure_password\SecurePasswordsAssignment.java sends user information outside the application. This may constitute a Privacy Violation.

Severity: Medium

CWE:359

Vulnerability details and guidance

Internal Guidance

Checkmarx

Training Recommended Fix

Lines: 43

---

Code (Line #43):

    public AttackResult completed(@RequestParam String password) {

---