Skip to content

Use_Of_Hardcoded_Password @ /ReturnSevered3.bas #409

New issue
New issue
Open
Open
Use_Of_Hardcoded_Password @ /ReturnSevered3.bas#409
Labels
CheckmarxSASTbranch:mainfeedback-app:d162bac6-65c9-4759-9368-8dcf4014a835project:cx-boris-goman/AutoPR
@cx-boris-goman

Description

@cx-boris-goman
cx-boris-goman
opened on Sep 2, 2025

Checkmarx (SAST): Use_Of_Hardcoded_Password
Security Issue: Read More about Use_Of_Hardcoded_Password
Checkmarx Project: cx-boris-goman/AutoPR
Repository URL: https://github.com/cx-boris-goman/AutoPR
Branch: main
Scan ID: ac71df62-c8e5-4bbf-89ae-8c7993edd161

The application uses the hard-coded password ""notsafe!"" for authentication purposes, either using it to verify users' identities, or to access another remote system. This password at line 13 of /ReturnSevered3.bas appears in the code, implying it is accessible to anyone with source code access, and cannot be changed without rebuilding the application.

Result 1:
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
Attack Vector:

    1. ""notsafe!"": /ReturnSevered3.bas[13,22]
    Review result in Checkmarx One: Use_Of_Hardcoded_Password

Metadata

Metadata

Assignees

No one assigned

    Labels

    CheckmarxSASTbranch:mainfeedback-app:d162bac6-65c9-4759-9368-8dcf4014a835project:cx-boris-goman/AutoPR

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions