CX Hardcoded_password_in_Connection_String @ root/init.jsp [master]

**Hardcoded_password_in_Connection_String** issue exists @ **root/init.jsp** in branch **master**

*The application contains hardcoded connection details, &quot;&quot;&quot;&quot;, at line&nbsp;67 of&nbsp;root\init.jsp. This connection string contains a hardcoded password,&nbsp;which is used in DriverManager.getConnection at line 67 of root\init.jsp to connect to a database server with getConnection. This can expose the database password, and impede proper password management.*

Severity: Medium

CWE:547

[Checkmarx](http://yairh-lt.dm.cx/CxWebClient/ViewerMain.aspx?scanid=1010014&projectid=3&pathid=100)

[Training](https://checkmarx-demo.codebashing.com/courses/)
[Recommended Fix](http://yairh-lt.dm.cx/CxWebClient/ScanQueryDescription.aspx?queryID=633&queryVersionCode=56556296&queryTitle=Hardcoded_password_in_Connection_String)

Lines: [67](https://github.com/CxYair/CxFlowGithub/blob/master/root/init.jsp#L67) 

---
[Code (Line #67):](https://github.com/CxYair/CxFlowGithub/blob/master/root/init.jsp#L67)
```
    		c = DriverManager.getConnection("jdbc:hsqldb:mem:SQL", "sa", "");
```
---


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX Hardcoded_password_in_Connection_String @ root/init.jsp [master] #45

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

CX Hardcoded_password_in_Connection_String @ root/init.jsp [master] #45

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions