Password_In_Comment @ /Login.java

**Checkmarx \(SAST\):** Password_In_Comment
**Security Issue:**  [Read More ](https://ast.checkmarx.net/results/104dc642-f346-404e-9767-7c3bc21331a6/85f0b871-dd27-420e-95e1-91e06302f579/sast/description/615/2940637487142405047) about Password_In_Comment
**Checkmarx Project:** [YSLCx/workshop\_demo](https://ast.checkmarx.net/projects/104dc642-f346-404e-9767-7c3bc21331a6/overview?branch=main)
**Repository URL:** [https://github.com/YSLCx/workshop\_demo](https://github.com/YSLCx/workshop_demo)
**Branch:** main
**Scan ID:** [85f0b871\-dd27\-420e\-95e1\-91e06302f579](https://ast.checkmarx.net/projects/104dc642-f346-404e-9767-7c3bc21331a6/scans?id=85f0b871-dd27-420e-95e1-91e06302f579&branch=main)


----
The application contains passwords embedded in source code comments, such as password at line 26 of /Login.java, which can easily be viewed by users.





**Result \#1:**
**Severity:** LOW
**State:** TO_VERIFY
**Status:** RECURRENT
**Attack Vector:**

**&nbsp;&nbsp;&nbsp;&nbsp;1. password:** [/Login.java\[26,69\]](https://github.com/YSLCx/workshop_demo/blob/main/Login.java#L26)
&nbsp;&nbsp;&nbsp;&nbsp;Review result in Checkmarx One: [Password\_In\_Comment](https://ast.checkmarx.net/results/85f0b871-dd27-420e-95e1-91e06302f579/104dc642-f346-404e-9767-7c3bc21331a6/sast?result-id=Z%2FG7%2FpxxaTv5smI3z%2Fe1ayDQKKE%3D)



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Password_In_Comment @ /Login.java #27

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Password_In_Comment @ /Login.java #27

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions