CWE: 639 (Authorization Bypass Through User-Controlled Key ('Authorization Issues'))
The property named findOne contains untrusted data, and (due to its name) may contain internal authorization data. Ensure that nothing in this application relies on this value to be a trusted indicator of security privilege or identity.References: CWE/nDon't know how to fix this? Don't know why this was reported? Get Assistance from Veracode
https://github.com/tsaekaoOrg/nodegoat/blob/1489ef89375ec079c565378a428682b440d73d28//app/data/contributions-dao.js#L52-L62
Filename: contributions-dao.js
Line: 57
CWE: 639 (Authorization Bypass Through User-Controlled Key ('Authorization Issues'))
The property named findOne contains untrusted data, and (due to its name) may contain internal authorization data. Ensure that nothing in this application relies on this value to be a trusted indicator of security privilege or identity. References: CWE/nDon't know how to fix this? Don't know why this was reported?
Get Assistance from Veracode