CX Portability_Flaw_Locale_Dependent_Comparison @ root/register.jsp [master]

**Portability_Flaw_Locale_Dependent_Comparison** issue exists @ **root/register.jsp** in branch **master**

*The application handles input strings&nbsp;in a locale-unspecific manner. In particular, root\register.jsp's if calls toLowerCase at line 39 to manipulate the string. The resulting string is compared with indexOf by if, at root\register.jsp:39.*

Severity: Low

CWE:474

[Checkmarx](http://yairh-lt.dm.cx/CxWebClient/ViewerMain.aspx?scanid=1010014&projectid=3&pathid=348)

[Training](https://checkmarx-demo.codebashing.com/courses/)
[Recommended Fix](http://yairh-lt.dm.cx/CxWebClient/ScanQueryDescription.aspx?queryID=4446&queryVersionCode=104375129&queryTitle=Portability_Flaw_Locale_Dependent_Comparison)

Lines: [39](https://github.com/CxYair/CxFlowGithub/blob/master/root/register.jsp#L39) 

---
[Code (Line #39):](https://github.com/CxYair/CxFlowGithub/blob/master/root/register.jsp#L39)
```
			if (username.replaceAll("\\s", "").toLowerCase().indexOf("<script>alert(\"xss\")</script>") >= 0) {
```
---


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX Portability_Flaw_Locale_Dependent_Comparison @ root/register.jsp [master] #55

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

CX Portability_Flaw_Locale_Dependent_Comparison @ root/register.jsp [master] #55

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions