Displaying test cases 11951 - 11975 of 113211 in total
-
Command line args Xpath replace char sink : SQL query
-
Command line args Xpath replace char sink : SQL query
-
Command line args Xpath replace char sink : SQL query
-
Command line args Xpath replace char sink : SQL query
-
Command line args Xpath replace char sink : SQL query
-
Command line args Xpath replace char sink : SQL query
-
Command line args Xpath replace char sink : SQL query
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id Sinks: writeConsole BadSink : user authorization not checked Flow Variant: 21 Control flow: Flow controlled by value of a private variable. All functions contained in ...
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 17 Control flow: for loops
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 16 Control flow: while(true)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 15 Control flow: switch(6)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 14 Control flow: if(IO.staticFive==5) and if(IO.staticFive!=5)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 13 Control flow: if(IO.STATIC_FINAL_FIVE==5) and if(IO.STATIC_FINAL_FIVE!=5)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 12 Control flow: if(IO.staticReturnsTrueOrFalse())
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 11 Control flow: if(IO.staticReturnsTrue()) and if(IO.staticReturnsFalse())
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 10 Control flow: if(IO.staticTrue) and if(IO.staticFalse)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 09 Control flow: if(IO.STATIC_FINAL_TRUE) and if(IO.STATIC_FINAL_FALSE)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 08 Control flow: if(privateReturnsTrue()) and if(privateReturnsFalse())
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 07 Control flow: if(privateFive==5) and if(privateFive!=5)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 06 Control flow: if(PRIVATE_STATIC_FINAL_FIVE==5) and if(PRIVATE_STATIC_FINAL_FIVE!=5)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 05 Control flow: if(privateTrue) and if(privateFalse)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 04 Control flow: if(PRIVATE_STATIC_FINAL_TRUE) and if(PRIVATE_STATIC_FINAL_FALSE)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 03 Control flow: if(5==5) and if(5!=5)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 02 Control flow: if(true) and if(false)
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 01 Baseline