Juliet Java 1.3 Test suite #111
DownloadDescription
A collection of test cases in the Java language. It contains examples organized under 112 different CWEs. Version 1.3 adds test cases for increment and decrement.
All documents related to the Juliet Test Suite can be found at the documents page.
This software is not subject to copyright protection and is in the public domain. NIST assumes no responsibility whatsoever for its use by other parties, and makes no guaranties, expressed or implied, about its quality, reliability, or any other characteristic.
Pursuant to 17 USC 105, Juliet Test Suite for Java version 1.3 is not subject to copyright protection in the United States. To the extent NIST may claim Foreign Rights in Juliet Test Suite for Java version 1.3, the Test Suite is being made available to you under the CC0 1.0 Public Domain License.
Documentation
Displaying test cases 22126 - 22150 of 28881 in total
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string Sinks: BadSink : Display of data in web page without any encoding or validation Flow Variant: 67 Data flow: data passed in a class from one method to anot...
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string BadSink: Display of data in web page without any encoding or validation Flow Variant: 68 Data flow: data passed as a member variable in the a class, which...
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string Sinks: BadSink : Display of data in web page without any encoding or validation Flow Variant: 71 Data flow: data passed as an Object reference argument fr...
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string Sinks: BadSink : Display of data in web page without any encoding or validation Flow Variant: 72 Data flow: data passed in a Vector from one method to ano...
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string Sinks: BadSink : Display of data in web page without any encoding or validation Flow Variant: 73 Data flow: data passed in a LinkedList from one method to...
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string Sinks: BadSink : Display of data in web page without any encoding or validation Flow Variant: 74 Data flow: data passed in a HashMap from one method to an...
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string Sinks: BadSink : Display of data in web page without any encoding or validation Flow Variant: 75 Data flow: data passed in a serialized object from one me...
-
CWE: 80 Cross Site Scripting (XSS) BadSource: URLConnection Read data from a web server with URLConnection GoodSource: A hardcoded string Sinks: BadSink : Display of data in web page without any encoding or validation Flow Variant: 81 Data flow: data passed in a parameter to an abstract method
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 01 Baseline
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 02 Control flow: if(true) and if(false)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 03 Control flow: if(5==5) and if(5!=5)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 04 Control flow: if(PRIVATE_STATIC_FINAL_TRUE) and if(PRIVATE_STATIC_FINAL_FALSE)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 05 Control flow: if(privateTrue) and if(privateFalse)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 06 Control flow: if(PRIVATE_STATIC_FINAL_FIVE==5) and if(PRIVATE_STATIC_FINAL_FIVE!=5)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 07 Control flow: if(privateFive==5) and if(privateFive!=5)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 08 Control flow: if(privateReturnsTrue()) and if(privateReturnsFalse())
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 09 Control flow: if(IO.STATIC_FINAL_TRUE) and if(IO.STATIC_FINAL_FALSE)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 10 Control flow: if(IO.staticTrue) and if(IO.staticFalse)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 11 Control flow: if(IO.staticReturnsTrue()) and if(IO.staticReturnsFalse())
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 12 Control flow: if(IO.staticReturnsTrueOrFalse())
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 13 Control flow: if(IO.STATIC_FINAL_FIVE==5) and if(IO.STATIC_FINAL_FIVE!=5)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 14 Control flow: if(IO.staticFive==5) and if(IO.staticFive!=5)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 15 Control flow: switch(6)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 16 Control flow: while(true)
-
CWE: 81 Cross Site Scripting (XSS) in Error Message BadSource: File Read data from file (named c:\data.txt) GoodSource: A hardcoded string BadSink: sendErrorServlet XSS in sendError Flow Variant: 17 Control flow: for loops