search

satyamchaurasiapersistent / JavaVulnerableLab

lab
0 stars 0 forks source link

CX Improper_Resource_Access_Authorization @ src/main/webapp/admin/manageusers.jsp [master] #72

Closed satyamchaurasiapersistent closed 2 years ago

satyamchaurasiapersistent commented 2 years ago

Improper_Resource_Access_Authorization issue exists @ src/main/webapp/admin/manageusers.jsp in branch master

An I\O action occurs at src\main\webapp\admin\manageusers.jsp in 14 without authorization checks.

Severity: Low

CWE:285

Vulnerability details and guidance

Checkmarx

Training Recommended Fix

Lines: 19 14

Code (Line #19):

 ResultSet rs=stmt.executeQuery("select * from users where privilege='user'");

Code (Line #14):

     stmt.executeUpdate("Delete from users where username='"+user+"'");
satyamchaurasiapersistent commented 2 years ago

Issue still exists.

satyamchaurasiapersistent commented 2 years ago

Issue still exists.

satyamchaurasiapersistent commented 2 years ago

Issue still exists.

satyamchaurasiapersistent commented 2 years ago

Issue still exists.