Displaying test cases 15351 - 15375 of 113211 in total
-
Command line args filtering : remove semi-colon and all invalid filenames and chars in paths sink : SQL query
-
input : direct user input in string filtering : check if there is only numbers sink : SQL query
-
input : shell commands filtering : check if there is only numbers sink : SQL query
-
input : shell commands filtering : check if there is only numbers sink : SQL query
-
Hardcoded string input no filtering sink : SQL query
-
Command line args Xpath replace char construction : concatenation with simple quote
-
Hardcoded string input Xpath replace char construction : concatenation with simple quote
-
Hardcoded string input Xpath replace char construction : concatenation with simple quote
-
input : shell commands Xpath replace char construction : concatenation with simple quote
-
Command line args filtering : remove all '\', '*', '(', ')', 'u0000', '/' in parameter construction : concatenation with simple quote
-
Hardcoded string input filtering : remove all '\', '*', '(', ')', 'u0000', '/' in parameter construction : concatenation with simple quote
-
input : direct user input in string filtering : remove all '\', '*', '(', ')', 'u0000', '/' in parameter construction : concatenation with simple quote
-
Command line args filtering : remove semi-colon and all invalid filenames and chars in paths construction : concatenation with simple quote
-
Hardcoded string input filtering : check if there is only numbers construction : concatenation with simple quote
-
input : shell commands filtering : check if there is only numbers construction : concatenation with simple quote
-
input : shell commands filtering : check if there is only numbers construction : concatenation with simple quote
-
input : shell commands filtering : check if there is only numbers construction : concatenation with simple quote
-
input : shell commands filtering : check if there is only numbers construction : concatenation with simple quote
-
Command line args no filtering construction : concatenation with simple quote
-
input : direct user input in string no filtering construction : concatenation with simple quote
-
input : shell commands no filtering construction : concatenation with simple quote
-
input : shell commands no filtering construction : concatenation with simple quote
-
Safe sample input : Get a serialize string in POST and unserialize it SANITIZE : uses indirect reference construction : right verification
-
This test attempts to insert a new record into a MySQL database. In the event of a SQLException during execution of the insert command, diagnostic information about the database connection and SQL statement will be dumped to the output stream. Metadata - Base program: Apache Lucene - Source ...
-
CWE: 566 Authorization Bypass through SQL primary BadSource: user id taken from url parameter GoodSource: hardcoded user id BadSink: writeConsole user authorization not checked Flow Variant: 03 Control flow: if(5==5) and if(5!=5)