- Checkmarx Documentation
- Checkmarx SAST
- SAST Release Notes
- Engine Pack Versions and Delivery Model
- Previous Engine Pack Versions
- Engine Pack Version 9.6.4
Engine Pack Version 9.6.4
CxSAST Engine
Languages & Frameworks
All supported code Languages & Frameworks versions are on the dedicated page here.
New SAST Engine - Fast Scan
Execution Time Optimization
Fast Scan incorporates an enhanced configuration to optimize execution time for Kotlin, Go, Scala, Python, Dart, PHP, and Rust languages.
Scanned Languages
Fast Scan mode is designed to scan the primary languages.
For subsequent language groups, the primary language for scanning is determined based on the criteria:
JVM languages:(Java, Scala, Kotlin, and Groovy) -only the language with the higher number of files is selected. In case of a tie, the order of choice is Java, Groovy, Scala, Kotlin;
IOS composed projects: (Swift and ObjC) - only the language with more files is selected. In case of a tie, the order of choice is Swift, ObjC;
Flutter projects: only the language with more files is selected. In case of a tie, the order of choice is Java, Swift, ObjC, CPP, Kotlin, and Dart;
Scripting Languages only projects: only the language with the higher number of files is selected. In case of a tie, the order of choice is JavaScript, VbScript, and Plsql.
C++
This version includes significant enhancements for C++ language support:
Update to the most recent version of ANTLR (version 4.13.1).
Improvements have been made to support various expressions, particularly reference declarations and pointers.
Parsing issues associated with more recent C++ syntax have been addressed.
Added support for .pc extension (pro*C files) to enhance C++ parsing (Note: SQL queries are ignored).
Added code to distinguish ObjC files that were previously misidentified as C files.
Notice
To fully leverage C++ support, ensuring accurate code parsing by defining any custom macros is important.
The C++ parser cannot adequately support macros throughout the program unless properly defined.
JavaScript
This engine pack introduces enhancements in JavaScript language parsing resulting from the update to the ANTLR version 4.13.1.
Rust
The Rust support has been improved by adding additional queries.
The following queries are available as part of this version:
Rust_Medium_Threat
Empty_Password_In_Connection_String
Hardcoded_Password_in_Connection_String
Password_In_Comment
SSRF
Unrestricted_Delete_S3
Unrestricted_Read_S3
Unrestricted_Write_S3
Use_Of_Hardcoded_Password
Rust_Low_Visibility
Missing_Password_Field_Masking
Notice
Technology Preview features provide early access to upcoming product innovations, enabling you to test functionality and provide feedback during development. However, these features are not fully supported, might not be functionally complete, and are not intended for production use.
As Checkmarx considers making future iterations of Technology Preview features generally available, we will attempt to resolve any issues customers experience when using these features.
RPG
This version introduces the support of fully free format.
Presets
OWASP API Top 10 2023
A new preset and category for the OWASP API Top 10 2023 is available out-of-the-box with this Engine Pack.
New status codes
Notice
In the upcoming version 9.6.5, the following use cases which have the status code denoted as “-1“ will be replaced by a new status code:
No code changes - new status code will be 58
Empty files - new status code will be 59
Error on the setup of the logs - new status code will be 61
Project not found - new status code will be 62
Error on file extension initialization (includes files having no extension defined) - new status code will be 63
Error on queries deserialization (a step that occurs before queries compilation) - new status code will be 64
Error on queries compilation - new status code will be 65
Error on queries execution - new status code will be 66
Error on the license validation - new status code will be 67
Error while scanning (such as parsing, Resolver) - new status code will be 68
To ensure a seamless transition and prevent potential errors, we strongly recommend the following:
Carefully review your existing pipelines and workflows.
Identify whether there are any configurations or dependencies currently relying on the current error code.
Making the necessary configuration adjustments before upgrading to version 9.6.3 is essential. By making these changes, you'll be able to avoid any disruptions caused by the change in error code and ensure the continued smooth operation of your processes.
Base Preset
Notice
Based on thorough tests and comparisons to internal benchmarks, we've decided to improve the base preset and fine-tune it for enhancement. Because of this, in the upcoming version 9.6.5, support for the following languages will be removed from the preset: Cobol, Go, Groovy, Perl, PLSQL, RPG, Ruby, and VB.Net.
We will focus on enhancing coverage for Java, JavaScript, C#, CPP, and Python languages. Additionally, we'll gradually include support for other languages with improved coverage and accuracy.
Removal of deprecated queries from Presets
Actions to be executed in the upcoming version 9.6.5:
Deprecated queries are going to be removed from the presets, according to the following list:
(Language, Group, Query Id, Query Name)
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 154, Cleansing_Canonicalization_and_Comparison_Errors
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 439, Cleansing_Canonicalization_and_Comparison_Errors
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 602, Cleansing_Canonicalization_and_Comparison_Errors
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 784, Cleansing_Canonicalization_and_Comparison_Errors
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
CPP, CPP_Medium_Threat, 1564, Inadequate_Pointer_Validation
Java, Java_Low_Visibility, 1639, Channel_Accessible_by_NonEndpoint
Java, Java_Low_Visibility, 1655, Plaintext_Storage_in_a_Cookie
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3298, Cleansing_Canonicalization_and_Comparison_Errors
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Low_Visibility, 3363, Use_Of_getenv
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
CPP, CPP_Heuristic, 5607, Heuristic_Buffer_Improper_Index_Access
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
Lua, Lua_Medium_Threat, 7992, Missing_Encryption_of_Sensitive_Data
PHP, PHP_Medium_Threat, 8060, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
VbNet, VbNet_High_Risk, 777, UTF7_XSS
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Lua, Lua_Medium_Threat, 7992, Missing_Encryption_of_Sensitive_Data
PHP, PHP_Medium_Threat, 8060, Missing_Encryption_of_Sensitive_Data
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 154, Cleansing_Canonicalization_and_Comparison_Errors
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 439, Cleansing_Canonicalization_and_Comparison_Errors
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 602, Cleansing_Canonicalization_and_Comparison_Errors
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 784, Cleansing_Canonicalization_and_Comparison_Errors
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
CPP, CPP_Medium_Threat, 1564, Inadequate_Pointer_Validation
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3298, Cleansing_Canonicalization_and_Comparison_Errors
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Low_Visibility, 3363, Use_Of_getenv
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
CPP, CPP_Heuristic, 5607, Heuristic_Buffer_Improper_Index_Access
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
Lua, Lua_Medium_Threat, 7992, Missing_Encryption_of_Sensitive_Data
PHP, PHP_Medium_Threat, 8060, Missing_Encryption_of_Sensitive_Data
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
CPP, CPP_Medium_Threat, 1564, Inadequate_Pointer_Validation
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Lua, Lua_Medium_Threat, 7992, Missing_Encryption_of_Sensitive_Data
PHP, PHP_Medium_Threat, 8060, Missing_Encryption_of_Sensitive_Data
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 154, Cleansing_Canonicalization_and_Comparison_Errors
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 439, Cleansing_Canonicalization_and_Comparison_Errors
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 602, Cleansing_Canonicalization_and_Comparison_Errors
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 784, Cleansing_Canonicalization_and_Comparison_Errors
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
CPP, CPP_Medium_Threat, 1564, Inadequate_Pointer_Validation
Java, Java_Low_Visibility, 1639, Channel_Accessible_by_NonEndpoint
Java, Java_Low_Visibility, 1655, Plaintext_Storage_in_a_Cookie
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3298, Cleansing_Canonicalization_and_Comparison_Errors
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Low_Visibility, 3363, Use_Of_getenv
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
CPP, CPP_Heuristic, 5607, Heuristic_Buffer_Improper_Index_Access
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
Lua, Lua_Medium_Threat, 7992, Missing_Encryption_of_Sensitive_Data
PHP, PHP_Medium_Threat, 8060, Missing_Encryption_of_Sensitive_Data
Apex, 53, Parameter_Tampering
ASP, 147, UTF7_XSS
ASP, 162, Insecure_Randomness
ASP, 178, DB_Parameter_Tampering
ASP, 185, Parameter_Tampering
ASP, 187, Reflected_XSS_Specific_Clients
CPP, 324, Heap_Inspection
CPP, 1211, Use_of_Insufficiently_Random_Values
CPP, 317, DB_Parameter_Tampering
CPP, 1564, Inadequate_Pointer_Validation
CPP, 327, Parameter_Tampering
CSharp, 432, UTF7_XSS
CSharp, 3772, Heap_Inspection
CSharp, 6306, Use_of_Insufficiently_Random_Values
CSharp, 466, DB_Parameter_Tampering
CSharp, 474, Parameter_Tampering
CSharp, 479, Reflected_XSS_Specific_Clients
Groovy, 3293, UTF7_XSS
Groovy, 3834, Heap_Inspection
Groovy, 3374, DB_Parameter_Tampering
Groovy, 3382, HTTP_Response_Splitting
Groovy, 3384, Multiple_Binds_to_the_Same_Port
Groovy, 3385, Parameter_Tampering
Groovy, 3408, Use_of_Insufficiently_Random_Values
Java, 3771, Heap_Inspection
Java, 621, UTF7_XSS
Java, 628, DB_Parameter_Tampering
Java, 1673, Multiple_Binds_to_the_Same_Port
Java, 638, Parameter_Tampering
JavaScript, 4128, Missing_Encryption_of_Sensitive_Data
JavaScript, 2979, Parameter_Tampering
JavaScript, 2991, Use_of_Insufficiently_Random_Values
Objc, 2911, Heap_Inspection
Objc, 2919, Use_of_Insufficiently_Random_Values
Objc, 2905, Missing_Encryption_of_Sensitive_Data
Objc, 2857, Parameter_Tampering
Objc, 2196, Side_Channel_Data_Leakage
Perl, 2043, Missing_Encryption_of_Sensitive_Data
Perl, 4137, Parameter_Tampering
PHP, 1339, Parameter_Tampering
PLSQL, 2628, HTTP_Response_Splitting
PLSQL, 2631, Parameter_Tampering
PLSQL, 2635, Use_of_Insufficiently_Random_Values
Python, 3557, DB_Parameter_Tampering
Python, 3565, Insecure_Randomness
Python, 3114, Parameter_Tampering
Ruby, 1536, DB_Parameter_Tampering
Ruby, 1544, Insecure_Randomness
Ruby, 1547, Parameter_Tampering
Scala, 4523, Heap_Inspection
Scala, 4383, DB_Parameter_Tampering
Scala, 4473, HTTP_Response_Splitting
Scala, 4533, Multiple_Binds_to_the_Same_Port
Scala, 4387, Parameter_Tampering
Swift, 6923, Heap_Inspection
Swift, 7029, Parameter_Tampering
VB6, 2380, Insecure_Randomness
VB6, 1118, Parameter_Tampering
VbNet, 777, UTF7_XSS
VbNet, 3773, Heap_Inspection
VbNet, 807, DB_Parameter_Tampering
VbNet, 815, Parameter_Tampering
VbNet, 817, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 5607, Heuristic_Buffer_Improper_Index_Access
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
CPP, CPP_Medium_Threat, 1564, Inadequate_Pointer_Validation
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 154, Cleansing_Canonicalization_and_Comparison_Errors
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 439, Cleansing_Canonicalization_and_Comparison_Errors
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 602, Cleansing_Canonicalization_and_Comparison_Errors
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 784, Cleansing_Canonicalization_and_Comparison_Errors
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
CPP, CPP_Medium_Threat, 1564, Inadequate_Pointer_Validation
Java, Java_Low_Visibility, 1639, Channel_Accessible_by_NonEndpoint
Java, Java_Low_Visibility, 1655, Plaintext_Storage_in_a_Cookie
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3298, Cleansing_Canonicalization_and_Comparison_Errors
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Low_Visibility, 3363, Use_Of_getenv
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Low_Visibility, 1639, Channel_Accessible_by_NonEndpoint
Java, Java_Low_Visibility, 1655, Plaintext_Storage_in_a_Cookie
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3906, Security_Misconfiguration
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
CPP, CPP_Medium_Threat, 1564, Inadequate_Pointer_Validation
Java, Java_Low_Visibility, 1639, Channel_Accessible_by_NonEndpoint
Java, Java_Low_Visibility, 1655, Plaintext_Storage_in_a_Cookie
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3906, Security_Misconfiguration
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
Java, Java_GWT, 2789, JSON_Hijacking
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 154, Cleansing_Canonicalization_and_Comparison_Errors
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 439, Cleansing_Canonicalization_and_Comparison_Errors
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 602, Cleansing_Canonicalization_and_Comparison_Errors
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 784, Cleansing_Canonicalization_and_Comparison_Errors
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Low_Visibility, 1639, Channel_Accessible_by_NonEndpoint
Java, Java_Low_Visibility, 1655, Plaintext_Storage_in_a_Cookie
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3298, Cleansing_Canonicalization_and_Comparison_Errors
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 154, Cleansing_Canonicalization_and_Comparison_Errors
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 439, Cleansing_Canonicalization_and_Comparison_Errors
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 602, Cleansing_Canonicalization_and_Comparison_Errors
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 784, Cleansing_Canonicalization_and_Comparison_Errors
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Low_Visibility, 1639, Channel_Accessible_by_NonEndpoint
Java, Java_Low_Visibility, 1655, Plaintext_Storage_in_a_Cookie
Java, Java_Medium_Threat, 1673, Multiple_Binds_to_the_Same_Port
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3297, Channel_Accessible_by_NonEndpoint
Groovy, Groovy_Low_Visibility, 3298, Cleansing_Canonicalization_and_Comparison_Errors
Groovy, Groovy_Low_Visibility, 3335, Plaintext_Storage_in_a_Cookie
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Medium_Threat, 3384, Multiple_Binds_to_the_Same_Port
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4533, Multiple_Binds_to_the_Same_Port
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
Lua, Lua_Medium_Threat, 7992, Missing_Encryption_of_Sensitive_Data
PHP, PHP_Medium_Threat, 8060, Missing_Encryption_of_Sensitive_Data
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 154, Cleansing_Canonicalization_and_Comparison_Errors
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 439, Cleansing_Canonicalization_and_Comparison_Errors
CSharp, CSharp_Low_Visibility, 446, JavaScript_Hijacking
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 602, Cleansing_Canonicalization_and_Comparison_Errors
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 784, Cleansing_Canonicalization_and_Comparison_Errors
VbNet, VbNet_Low_Visibility, 791, JavaScript_Hijacking
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Low_Visibility, 1667, Use_of_Client_Side_Authentication
ASP, ASP_Low_Visibility, 1802, JavaScript_Hijacking
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Java, Java_Low_Visibility, 2096, Reliance_on_Cookies_in_a_Decision
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Low_Visibility, 3346, Reliance_on_Cookies_in_a_Decision
Groovy, Groovy_Low_Visibility, 3362, Use_of_Client_Side_Authentication
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3922, Potentially_Vulnerable_To_CSRF
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Objc, ObjectiveC_High_Risk, 4728, Universal_XSS
Objc, ObjectiveC_High_Risk, 4735, Deserialization_of_Untrusted_Data
Java, Java_Spring, 6440, Spring_Missing_X_Content_Type_Options
Java, Java_Spring, 6443, Spring_Missing_XSS_Protection_Header
Java, Java_Spring, 6448, Spring_Missing_Expect_CT_Header
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 5607, Heuristic_Buffer_Improper_Index_Access
ASP, ASP_Heuristic, 132, Heuristic_2nd_Order_SQL_Injection
ASP, ASP_Heuristic, 133, Heuristic_DB_Parameter_Tampering
ASP, ASP_Heuristic, 134, Heuristic_Parameter_Tampering
ASP, ASP_Heuristic, 135, Heuristic_SQL_Injection
ASP, ASP_Heuristic, 136, Heuristic_Stored_XSS
ASP, ASP_Heuristic, 137, Heuristic_CSRF
ASP, ASP_High_Risk, 147, UTF7_XSS
ASP, ASP_Low_Visibility, 149, Blind_SQL_Injections
ASP, ASP_Low_Visibility, 176, XSS_Evasion_Attack
ASP, ASP_Medium_Threat, 178, DB_Parameter_Tampering
ASP, ASP_Medium_Threat, 187, Reflected_XSS_Specific_Clients
CPP, CPP_Heuristic, 271, Heuristic_2nd_Order_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 272, Heuristic_2nd_Order_Buffer_Overflow_read
CPP, CPP_Heuristic, 273, Heuristic_2nd_Order_SQL_Injection
CPP, CPP_Heuristic, 274, Heuristic_Buffer_Overflow_malloc
CPP, CPP_Heuristic, 275, Heuristic_Buffer_Overflow_read
CPP, CPP_Heuristic, 276, Heuristic_CGI_Stored_XSS
CPP, CPP_Heuristic, 277, Heuristic_DB_Parameter_Tampering
CPP, CPP_Heuristic, 280, Heuristic_Parameter_Tampering
CPP, CPP_Heuristic, 281, Heuristic_SQL_Injection
CPP, CPP_Low_Visibility, 298, Blind_SQL_Injections
CPP, CPP_Low_Visibility, 313, Stored_Blind_SQL_Injections
CPP, CPP_Medium_Threat, 317, DB_Parameter_Tampering
CPP, CPP_Stored_Vulnerabilities, 342, Stored_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 417, Heuristic_2nd_Order_SQL_Injection
CSharp, CSharp_Heuristic, 418, Heuristic_DB_Parameter_Tampering
CSharp, CSharp_Heuristic, 419, Heuristic_Parameter_Tampering
CSharp, CSharp_Heuristic, 420, Heuristic_SQL_Injection
CSharp, CSharp_Heuristic, 421, Heuristic_Stored_XSS
CSharp, CSharp_Heuristic, 422, Heuristic_CSRF
CSharp, CSharp_High_Risk, 432, UTF7_XSS
CSharp, CSharp_Low_Visibility, 434, Blind_SQL_Injections
CSharp, CSharp_Low_Visibility, 451, Potential_ReDoS
CSharp, CSharp_Low_Visibility, 452, Potential_ReDoS_By_Injection
CSharp, CSharp_Low_Visibility, 453, Potential_ReDoS_In_Code
CSharp, CSharp_Low_Visibility, 454, Potential_ReDoS_In_Static_Field
CSharp, CSharp_Low_Visibility, 461, XSS_Evasion_Attack
CSharp, CSharp_Medium_Threat, 466, DB_Parameter_Tampering
CSharp, CSharp_Medium_Threat, 479, Reflected_XSS_Specific_Clients
Java, Java_Low_Visibility, 598, Blind_SQL_Injections
Java, Java_Low_Visibility, 612, Potential_ReDoS
Java, Java_Low_Visibility, 613, Potential_ReDoS_By_Injection
Java, Java_Low_Visibility, 614, Potential_ReDoS_In_Match
Java, Java_Low_Visibility, 615, Potential_ReDoS_In_Replace
Java, Java_Low_Visibility, 616, Potential_ReDoS_In_Static_Field
Java, Java_Low_Visibility, 621, UTF7_XSS
Java, Java_Medium_Threat, 628, DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 762, Heuristic_2nd_Order_SQL_Injection
VbNet, VbNet_Heuristic, 763, Heuristic_DB_Parameter_Tampering
VbNet, VbNet_Heuristic, 764, Heuristic_Parameter_Tampering
VbNet, VbNet_Heuristic, 765, Heuristic_SQL_Injection
VbNet, VbNet_Heuristic, 766, Heuristic_Stored_XSS
VbNet, VbNet_Heuristic, 767, Heuristic_CSRF
VbNet, VbNet_High_Risk, 777, UTF7_XSS
VbNet, VbNet_Low_Visibility, 779, Blind_SQL_Injections
VbNet, VbNet_Low_Visibility, 802, XSS_Evasion_Attack
VbNet, VbNet_Medium_Threat, 807, DB_Parameter_Tampering
VbNet, VbNet_Medium_Threat, 817, Reflected_XSS_Specific_Clients
VB6, VB6_Heuristic, 1107, Heuristic_Parameter_Tampering
VB6, VB6_Heuristic, 1108, Heuristic_SQL_Injection
Ruby, Ruby_Low_Visibility, 1511, Blind_SQL_Injections
Ruby, Ruby_Low_Visibility, 1534, XSS_Evasion_Attack
Ruby, Ruby_Medium_Threat, 1536, DB_Parameter_Tampering
Java, Java_Stored, 1685, Stored_HTTP_Response_Splitting
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2190, Potential_ReDoS
JavaScript, JavaScript_Low_Visibility, 2407, Client_Potential_ReDoS_In_Match
JavaScript, JavaScript_Low_Visibility, 2408, Client_Potential_ReDoS_In_Replace
JavaScript, JavaScript_Low_Visibility, 2558, Client_Potential_Ad_Hoc_Ajax
PLSQL, PLSQL_Medium_Threat, 2628, HTTP_Response_Splitting
Ruby, Ruby_Vulnerable_Outdated_Versions, 2772, Outdated_Rails_Allows_Cross_Site_Request_Forgery
Ruby, Ruby_Vulnerable_Outdated_Versions, 2773, Outdated_Rails_Allows_SQL_Injection
Ruby, Ruby_Vulnerable_Outdated_Versions, 2774, Outdated_Rails_Allows_Bypass_Access_Control
Ruby, Ruby_Vulnerable_Outdated_Versions, 2778, Outdated_Rails_Allows_DOS_via_ActiveRecord
Ruby, Ruby_Vulnerable_Outdated_Versions, 2779, Outdated_JSON_GEM_Remote_Code
Ruby, Ruby_Vulnerable_Outdated_Versions, 2780, Outdated_JSON_Remote_Code_Execution
Ruby, Ruby_Vulnerable_Outdated_Versions, 2781, Outdated_Rails_Allows_XSS
Java, Java_GWT, 2789, JSON_Hijacking
Objc, ObjectiveC_Medium_Threat, 2857, Parameter_Tampering
Objc, ObjectiveC_Medium_Threat, 2905, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Low_Visibility, 2911, Heap_Inspection
Groovy, Groovy_Heuristic, 3277, Heuristic_2nd_Order_SQL_Injection
Groovy, Groovy_Heuristic, 3278, Heuristic_CGI_Stored_XSS
Groovy, Groovy_Heuristic, 3279, Heuristic_DB_Parameter_Tampering
Groovy, Groovy_Heuristic, 3280, Heuristic_Parameter_Tampering
Groovy, Groovy_Heuristic, 3281, Heuristic_SQL_Injection
Groovy, Groovy_Heuristic, 3282, Heuristic_Stored_XSS
Groovy, Groovy_Heuristic, 3283, Heuristic_CSRF
Groovy, Groovy_High_Risk, 3293, UTF7_XSS
Groovy, Groovy_Low_Visibility, 3296, Blind_SQL_Injections
Groovy, Groovy_Low_Visibility, 3336, Potenial_UTF7_XSS
Groovy, Groovy_Low_Visibility, 3337, Potential_ReDoS
Groovy, Groovy_Low_Visibility, 3338, Potential_ReDoS_By_Injection
Groovy, Groovy_Low_Visibility, 3339, Potential_ReDoS_In_Match
Groovy, Groovy_Low_Visibility, 3340, Potential_ReDoS_In_Replace
Groovy, Groovy_Low_Visibility, 3341, Potential_ReDoS_In_Static_Field
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Groovy, Groovy_Medium_Threat, 3382, HTTP_Response_Splitting
Groovy, Groovy_Stored, 3414, Stored_HTTP_Response_Splitting
Python, Python_Medium_Threat, 3557, DB_Parameter_Tampering
Java, Java_Low_Visibility, 3890, Improper_Resource_Access_Authorization
JavaScript, JavaScript_Server_Side_Vulnerabilities, 3924, JSON_Hijacking
Java, Java_Low_Visibility, 4034, Suspected_XSS
JavaScript, JavaScript_Server_Side_Vulnerabilities, 4128, Missing_Encryption_of_Sensitive_Data
Scala, Scala_Medium_Threat, 4383, DB_Parameter_Tampering
Scala, Scala_Low_Visibility, 4471, Potential_Stored_XSS
Scala, Scala_Stored, 4472, Stored_HTTP_Response_Splitting
Scala, Scala_Medium_Threat, 4473, HTTP_Response_Splitting
Swift, Swift_Low_Visibility, 6923, Heap_Inspection
Swift, Swift_Low_Visibility, 7029, Parameter_Tampering
Perl, Perl_Medium_Threat, 2043, Missing_Encryption_of_Sensitive_Data
Objc, ObjectiveC_Medium_Threat, 2196, Side_Channel_Data_Leakage
Groovy, Groovy_Medium_Threat, 3374, DB_Parameter_Tampering
Engine Pack Supported Code Languages and Frameworks (9.6.4)
Environment and Primary Languages | Secondary Languages | Framework | File extensions | Additional Information | |
|---|---|---|---|---|---|
|
|
|
| Java can be configured as a unified language with Scala. | |
|
|
|
| ||
|
|
|
| ||
|
| ||||
|
|
| |||
| JavaScript |
|
| ||
|
|
| This is for Salesforce APEX only. | ||
|
|
| |||
|
|
| |||
|
| ||||
|
| ||||
|
|
| |||
|
| ||||
|
| ||||
|
| ||||
|
|
|
| ||
|
|
| |||
|
|
| Scala can be configured as a unified language with Java. | ||
|
|
| |||
|
|
| |||
|
| ||||
|
| ||||
|
|
| |||
|
|
| |||
|
|
Vulnerability Queries 9.6.4
All queries that are executed in version 9.6.4 are available for download - PDF, CSV
New and updated queries in version 9.6.4 are available for download - PDF, CSV
Queries associated with predefined query presets are available for download - PDF, CSV
Release Notes for Engine Pack (EP) 9.6.4 Patches
Version 9.6.4.1003 April 2024 |
|---|
|
Version 9.6.4.1002 March 2024 |
|---|
|