CX Deserialization_of_Untrusted_Data @ webgoat-lessons/vulnerable-components/src/main/java/org/owasp/webgoat/plugin/VulnerableComponentsLesson.java [master]

**Deserialization_of_Untrusted_Data** issue exists @ **webgoat-lessons/vulnerable-components/src/main/java/org/owasp/webgoat/plugin/VulnerableComponentsLesson.java** in branch **master**

Severity: High
CWE:502
[Vulnerability details and guidance](https://cwe.mitre.org/data/definitions/502.html)
[Internal Guidance](https://custodela.atlassian.net/wiki/spaces/AS/pages/79462432/Remediation+Guidance)
Lines: [53](https://github.com/Custodela/WebGoat//blob/master/webgoat-lessons/vulnerable-components/src/main/java/org/owasp/webgoat/plugin/VulnerableComponentsLesson.java#L53) 

---
[Code (Line #53):](https://github.com/Custodela/WebGoat//blob/master/webgoat-lessons/vulnerable-components/src/main/java/org/owasp/webgoat/plugin/VulnerableComponentsLesson.java#L53)
```
	public @ResponseBody AttackResult completed(@RequestParam String payload) throws IOException {
```
---


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX Deserialization_of_Untrusted_Data @ webgoat-lessons/vulnerable-components/src/main/java/org/owasp/webgoat/plugin/VulnerableComponentsLesson.java [master] #35

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CX Deserialization_of_Untrusted_Data @ webgoat-lessons/vulnerable-components/src/main/java/org/owasp/webgoat/plugin/VulnerableComponentsLesson.java [master] #35

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions