Synchronization on boxed types or strings.Serialization methods do not match required signature.Serializable inner class of non-serializable class.Result of multiplication cast to wider type.Resolving XML external entity in user-controlled data.ReadResolve must have Object return type, not void.Race condition in socket authentication.Race condition in double-checked locking object initialization.Query built from user-controlled sources.Query built by concatenation with a possibly-untrusted string.Polynomial regular expression used on uncontrolled data.Partial path traversal vulnerability from remote.Overly permissive regular expression range.OGNL Expression Language statement with user-controlled input.Non-synchronized override of synchronized method.Non-final method invocation in constructor.Missing read or write permission in a content provider.Local information disclosure in a temporary directory.Leaking sensitive information through an implicit Intent.Leaking sensitive information through a ResultReceiver.LDAP query built from user-controlled sources.Insertion of sensitive information into log files.Information exposure through a stack trace.Incorrect absolute value of random number.Inconsistent synchronization of getter and setter.Inconsistent synchronization for writeObject().Improper verification of intent by broadcast receiver.Improper validation of user-provided size used for array construction.Improper validation of user-provided array index.Implicit narrowing conversion in compound assignment.Implicit conversion from array to string.Hashed value without hashCode definition.Failure to use HTTPS or SFTP URL in Maven artifact upload/download.Externalizable but no public no-argument constructor.Expression always evaluates to the same value.Executing a command with a relative path.Equals method does not inspect argument type.Double-checked locking is not thread-safe.Detect JHipster Generator Vulnerability CVE-2019-16303. Deserialization of user-controlled data.Deprecated method or constructor invocation.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |