SSRF issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/Install.java in branch master
The application sends a request to a remote server, for some resource, using dburl in src\main\java\org\cysecurity\cspf\jvl\controller\Install.java:112. However, an attacker can control the target of the request, by sending a URL or other data in ""dburl"" at src\main\java\org\cysecurity\cspf\jvl\controller\Install.java:54.
SSRF issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/Install.java in branch master
The application sends a request to a remote server, for some resource, using dburl in src\main\java\org\cysecurity\cspf\jvl\controller\Install.java:112. However, an attacker can control the target of the request, by sending a URL or other data in ""dburl"" at src\main\java\org\cysecurity\cspf\jvl\controller\Install.java:54.
Severity: Medium
CWE:918
Vulnerability details and guidance
Checkmarx
Training Recommended Fix
Lines: 54 56 57 58
Code (Line #54):
Code (Line #56):
Code (Line #57):
Code (Line #58):