SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #148791

Back to the previous page... Back to the previous page

Test Case IDCandidate148791
Bad / Good / MixedMixedMixed test case
Test suite: 87  109  
Added bySAMATE Team Staff
Type of test caseSource Code
Input string
Expected Output
Submission date2013-05-22
DescriptionCWE: 90 LDAP Injection
BadSource: listen_tcp Read data using a listening tcp connection
GoodSource: A hardcoded string
BadSink : data concatenated into LDAP search, which could result in LDAP Injection
Flow Variant: 52 Data flow: data passed as an argument from one method to another to another in three different classes in the same package

There are no comments
Have any comments on this test case? Please, .

File Contains:
CWE-090: Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') on line(s): 58