XSRF issue exists @ root/register.jsp in branch master
Method = at line 7 of root\register.jsp gets a parameter from a user request from ""password1"". This parameter value flows through the code and is eventually used to access application state altering functionality. This may enable Cross-Site Request Forgery (CSRF).
smmclaughlin
commented
2 years ago
XSRF issue exists @ root/register.jsp in branch master
Method = at line 7 of root\register.jsp gets a parameter from a user request from ""password1"". This parameter value flows through the code and is eventually used to access application state altering functionality. This may enable Cross-Site Request Forgery (CSRF).
Severity: Medium
CWE:352
Checkmarx
Training Recommended Fix
Lines: 51 7 46
Code (Line #51):
Code (Line #7):
Code (Line #46):