CSRF @ /LoginValidator.java #278
Description
Checkmarx (SAST): CSRF
Security Issue: Read More about CSRF
Checkmarx Project: cx-boris-goman/borJavaVul
Repository URL: https://github.com/cx-boris-goman/borJavaVul
Branch: main
Scan ID: df63710a-c9c2-4406-9ad7-319bd05458a4
Method processRequest at line 10 of /LoginValidator.java gets a parameter from a user request from ""password"". This parameter value flows through the code and is eventually used to access application state altering functionality. This may enable Cross-Site Request Forgery (CSRF).
Result 1:
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. ""password"": /LoginValidator.java[10,44]
2. getParameter: /LoginValidator.java[10,43]
3. trim: /LoginValidator.java[10,60]
4. pass: /LoginValidator.java[10,18]
5. pass: /LoginValidator.java[18,120]
6. executeQuery: /LoginValidator.java[18,56]
7. rs: /LoginValidator.java[18,36]
8. rs: /LoginValidator.java[19,53]
9. rs: /LoginValidator.java[22,67]
10. getString: /LoginValidator.java[22,79]
11. getAttribute: /src/main/webapp/changeCardDetails.jsp[29,34]
12. toString: /src/main/webapp/changeCardDetails.jsp[29,53]
13. id: /src/main/webapp/changeCardDetails.jsp[29,11]
14. id: /src/main/webapp/changeCardDetails.jsp[43,86]
15. executeUpdate: /src/main/webapp/changeCardDetails.jsp[43,28]
Review result in Checkmarx One: CSRF
Result 2:
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. ""password"": /LoginValidator.java[10,44]
2. getParameter: /LoginValidator.java[10,43]
3. trim: /LoginValidator.java[10,60]
4. pass: /LoginValidator.java[10,18]
5. pass: /LoginValidator.java[18,120]
6. executeQuery: /LoginValidator.java[18,56]
7. rs: /LoginValidator.java[18,36]
8. rs: /LoginValidator.java[19,53]
9. rs: /LoginValidator.java[22,67]
10. getString: /LoginValidator.java[22,79]
11. getAttribute: /src/main/webapp/vulnerability/csrf/change-info.jsp[27,34]
12. toString: /src/main/webapp/vulnerability/csrf/change-info.jsp[27,53]
13. id: /src/main/webapp/vulnerability/csrf/change-info.jsp[27,11]
14. id: /src/main/webapp/vulnerability/csrf/change-info.jsp[31,78]
15. executeUpdate: /src/main/webapp/vulnerability/csrf/change-info.jsp[31,31]
Review result in Checkmarx One: CSRF
Result 3:
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. ""password"": /LoginValidator.java[10,44]
2. getParameter: /LoginValidator.java[10,43]
3. trim: /LoginValidator.java[10,60]
4. pass: /LoginValidator.java[10,18]
5. pass: /LoginValidator.java[18,120]
6. executeQuery: /LoginValidator.java[18,56]
7. rs: /LoginValidator.java[18,36]
8. rs: /LoginValidator.java[19,53]
9. rs: /LoginValidator.java[22,67]
10. getString: /LoginValidator.java[22,79]
11. getAttribute: /src/main/webapp/vulnerability/csrf/changepassword.jsp[15,35]
12. toString: /src/main/webapp/vulnerability/csrf/changepassword.jsp[15,54]
13. id: /src/main/webapp/vulnerability/csrf/changepassword.jsp[15,12]
14. id: /src/main/webapp/vulnerability/csrf/changepassword.jsp[40,83]
15. executeUpdate: /src/main/webapp/vulnerability/csrf/changepassword.jsp[40,33]
Review result in Checkmarx One: CSRF
Result 4:
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. ""username"": /LoginValidator.java[9,41]
2. getParameter: /LoginValidator.java[9,40]
3. trim: /LoginValidator.java[9,57]
4. user: /LoginValidator.java[9,15]
5. user: /LoginValidator.java[18,96]
6. executeQuery: /LoginValidator.java[18,56]
7. rs: /LoginValidator.java[18,36]
8. rs: /LoginValidator.java[19,53]
9. rs: /LoginValidator.java[22,67]
10. getString: /LoginValidator.java[22,79]
11. getAttribute: /src/main/webapp/changeCardDetails.jsp[29,34]
12. toString: /src/main/webapp/changeCardDetails.jsp[29,53]
13. id: /src/main/webapp/changeCardDetails.jsp[29,11]
14. id: /src/main/webapp/changeCardDetails.jsp[43,86]
15. executeUpdate: /src/main/webapp/changeCardDetails.jsp[43,28]
Review result in Checkmarx One: CSRF
Result 5:
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. ""username"": /LoginValidator.java[9,41]
2. getParameter: /LoginValidator.java[9,40]
3. trim: /LoginValidator.java[9,57]
4. user: /LoginValidator.java[9,15]
5. user: /LoginValidator.java[18,96]
6. executeQuery: /LoginValidator.java[18,56]
7. rs: /LoginValidator.java[18,36]
8. rs: /LoginValidator.java[19,53]
9. rs: /LoginValidator.java[22,67]
10. getString: /LoginValidator.java[22,79]
11. getAttribute: /src/main/webapp/vulnerability/csrf/change-info.jsp[27,34]
12. toString: /src/main/webapp/vulnerability/csrf/change-info.jsp[27,53]
13. id: /src/main/webapp/vulnerability/csrf/change-info.jsp[27,11]
14. id: /src/main/webapp/vulnerability/csrf/change-info.jsp[31,78]
15. executeUpdate: /src/main/webapp/vulnerability/csrf/change-info.jsp[31,31]
Review result in Checkmarx One: CSRF
Result 6:
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
Attack Vector:
1. ""username"": /LoginValidator.java[9,41]
2. getParameter: /LoginValidator.java[9,40]
3. trim: /LoginValidator.java[9,57]
4. user: /LoginValidator.java[9,15]
5. user: /LoginValidator.java[18,96]
6. executeQuery: /LoginValidator.java[18,56]
7. rs: /LoginValidator.java[18,36]
8. rs: /LoginValidator.java[19,53]
9. rs: /LoginValidator.java[22,67]
10. getString: /LoginValidator.java[22,79]
11. getAttribute: /src/main/webapp/vulnerability/csrf/changepassword.jsp[15,35]
12. toString: /src/main/webapp/vulnerability/csrf/changepassword.jsp[15,54]
13. id: /src/main/webapp/vulnerability/csrf/changepassword.jsp[15,12]
14. id: /src/main/webapp/vulnerability/csrf/changepassword.jsp[40,83]
15. executeUpdate: /src/main/webapp/vulnerability/csrf/changepassword.jsp[40,33]
Review result in Checkmarx One: CSRF