SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #148790

Back to the previous page... Back to the previous page

Test Case IDCandidate148790
Bad / Good / MixedMixedMixed test case
Author
Associations
Test suite: 87  109  
Added bySAMATE Team Staff
LanguageJava
Type of test caseSource Code
Input string
Expected Output
Instructions
Submission date2013-05-22
DescriptionCWE: 90 LDAP Injection
BadSource: listen_tcp Read data using a listening tcp connection
GoodSource: A hardcoded string
BadSink: data concatenated into LDAP search, which could result in LDAP Injection
Flow Variant: 51 Data flow: data passed as an argument from one function to another in different classes in the same package
File(s)
Flaw

There are no comments
Have any comments on this test case? Please, .


					
				

					
				

					
				

					
				
File Contains:
CWE-090: Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') on line(s): 57