Test cases - NIST Software Assurance Reference Dataset

Displaying test cases 14976 - 15000 of 74755 in total

CWE-90

61690-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string Sinks: BadSink : unchecked data leads to LDAP injection Flow Variant: 45 Data flow: data passed as a private class member variable from one function to another...
CWE-90

61689-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 42 Data flow: data returned from one method to another in the same class
CWE-90

61688-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 41 Data flow: data passed as an argument from one method to another in the same class
CWE-90

61687-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string Sinks: BadSink : unchecked data leads to LDAP injection Flow Variant: 31 Data flow: make a copy of data within the same method
CWE-90

61686-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 19 Control flow: Dead code after an if(true) return
CWE-90

61685-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 17 Control flow: for loops
CWE-90

61684-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 16 Control flow: while(true) and while(local_f)
CWE-90

61683-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 15 Control flow: switch(6)
CWE-90

61682-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 14 Control flow: if(IO.static_five==5) and if(IO.static_five!=5)
CWE-90

61681-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 13 Control flow: if(IO.static_final_five==5) and if(IO.static_final_five!=5)
CWE-90

61680-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 12 Control flow: if(IO.static_returns_t_or_f())
CWE-90

61679-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 11 Control flow: if(IO.static_returns_t()) and if(IO.static_returns_f())
CWE-90

61678-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 10 Control flow: if(IO.static_t) and if(IO.static_f)
CWE-90

61677-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 09 Control flow: if(IO.static_final_t) and if(IO.static_final_f)
CWE-90

61676-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 08 Control flow: if(private_returns_t()) and if(private_returns_f())
CWE-90

61675-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 07 Control flow: if(private_five==5) and if(private_five!=5)
CWE-90

61674-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 06 Control flow: if(private_final_five==5) and if(private_final_five!=5)
CWE-90

61673-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 05 Control flow: if(private_t) and if(private_f)
CWE-90

61672-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 04 Control flow: if(private_final_t) and if(private_final_f)
CWE-90

61671-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 03 Control flow: if(5==5) and if(5!=5)
CWE-90

61670-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 02 Control flow: if(true) and if(false)
CWE-90

61669-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getParameterServlet Read data from a querystring using getParameter GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 01 Baseline
CWE-90

61668-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getCookiesServlet Read data from the first cookie GoodSource: A hardcoded string Sinks: BadSink : unchecked data leads to LDAP injection Flow Variant: 71 Data flow: data passed as an Object reference argument from one method to another in different classes i...
CWE-90

61667-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getCookiesServlet Read data from the first cookie GoodSource: A hardcoded string BadSink: unchecked data leads to LDAP injection Flow Variant: 68 Data flow: data passed as a member variable in the "a" class, which is used by a method in another class in the ...
CWE-90

61666-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 90 LDAP Injection BadSource: getCookiesServlet Read data from the first cookie GoodSource: A hardcoded string Sinks: BadSink : unchecked data leads to LDAP injection Flow Variant: 67 Data flow: data passed in a class from one method to another in different source files in the same package

Results per page