secDevLabs icon indicating copy to clipboard operation
secDevLabs copied to clipboard
verified publisher icon globocom

[OWASP 2021] - Add new A2 - Cryptographic Failures

Open chinchila opened this issue 4 years ago • 2 comments

New Vulnerable Application

Created a new vulnerable application for the secDevLabs.

The vulnerability in the application is based on the OWASP Top 10 2021 - A2 Cryptographic Failures. Examples for performing vulnerability testing are in PR's README.md.

Issue

#525

chinchila avatar Oct 29 '21 06:10 chinchila

This pull request introduces 7 alerts when merging 65ec17d150e19c8d8568511ed7258e28261f4929 into 725db1c459c35ee5e90e148740dfa6520e84bc4d - view on LGTM.com

new alerts:

  • 3 for Unused import
  • 2 for URL redirection from remote source
  • 2 for Uncontrolled data used in path expression

lgtm-com[bot] avatar Oct 29 '21 06:10 lgtm-com[bot]

This pull request introduces 7 alerts when merging b945a833575b9f35bc440bf380fa179033c65771 into 7b00ccd6d4f3a64cf5ec8fecd697aed5f62a245f - view on LGTM.com

new alerts:

  • 3 for Unused import
  • 2 for URL redirection from remote source
  • 2 for Uncontrolled data used in path expression

lgtm-com[bot] avatar Oct 29 '21 15:10 lgtm-com[bot]