SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #148798

Back to the previous page... Back to the previous page

Test Case IDCandidate148798
Bad / Good / MixedMixedMixed test case
Author
Associations
Test suite: 87  109  
Added bySAMATE Team Staff
LanguageJava
Type of test caseSource Code
Input string
Expected Output
Instructions
Submission date2013-05-22
DescriptionCWE: 90 LDAP Injection
BadSource: listen_tcp Read data using a listening tcp connection
GoodSource: A hardcoded string
Sinks:
BadSink : data concatenated into LDAP search, which could result in LDAP Injection
Flow Variant: 71 Data flow: data passed as an Object reference argument from one method to another in different classes in the same package
File(s)
Flaw

There are no comments
Have any comments on this test case? Please, .


					
				
File Contains:
CWE-090: Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') on line(s): 58