Unchecked_Input_for_Loop_Condition issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/xxe.java in branch refs/heads/master
Method processRequest at line 44 of src\main\java\org\cysecurity\cspf\jvl\controller\xxe.java gets user input from element getInputStream . This element’s value flows through the code without being validated, and is eventually used in a loop condition in processRequest at line 53 of src\main\java\org\cysecurity\cspf\jvl\controller\xxe.java. This constitutes an Unchecked Input for Loop Condition.
Severity: Medium
CWE:606
Vulnerability details and guidance
Checkmarx
Training
Recommended Fix
Lines: 44
Code (Line #44):
InputStream xml=request.getInputStream();
Unchecked_Input_for_Loop_Condition issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/xxe.java in branch refs/heads/master
Method processRequest at line 44 of src\main\java\org\cysecurity\cspf\jvl\controller\xxe.java gets user input from element getInputStream . This element’s value flows through the code without being validated, and is eventually used in a loop condition in processRequest at line 53 of src\main\java\org\cysecurity\cspf\jvl\controller\xxe.java. This constitutes an Unchecked Input for Loop Condition.
Severity: Medium
CWE:606
Vulnerability details and guidance
Checkmarx
Training
Recommended Fix
Lines: 44
Code (Line #44):