René's URL Explorer Experiment


Title: [Snyk] Security upgrade org.apache.tomcat:tomcat-coyote from 9.0.22 to 9.0.71 by snyk-bot · Pull Request #134 · tyleragypt/JavaVulnerableLab · GitHub

Open Graph Title: [Snyk] Security upgrade org.apache.tomcat:tomcat-coyote from 9.0.22 to 9.0.71 by snyk-bot · Pull Request #134 · tyleragypt/JavaVulnerableLab

X Title: [Snyk] Security upgrade org.apache.tomcat:tomcat-coyote from 9.0.22 to 9.0.71 by snyk-bot · Pull Request #134 · tyleragypt/JavaVulnerableLab

Description: lab. Contribute to tyleragypt/JavaVulnerableLab development by creating an account on GitHub.

Open Graph Description: Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable de...

X Description: Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable de...

Opengraph URL: https://github.com/tyleragypt/JavaVulnerableLab/pull/134

X: @github

direct link

Domain: github.com

route-pattern/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controllervoltron_pull_requests_fragments
route-actionpull_request_layout
fetch-noncev2:0028d9fb-d566-970c-8512-6056a41b6ed9
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idAD72:1B6875:103B580:15CBE0B:6A5AA5BE
html-safe-noncee63dd7778a311c28a21593460c10e1126bd626ce5c44a9d69147de8ebe925608
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJBRDcyOjFCNjg3NToxMDNCNTgwOjE1Q0JFMEI6NkE1QUE1QkUiLCJ2aXNpdG9yX2lkIjoiNDE0Mjg2NzM4NzU0ODA4MzY0NiIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac00c90362ff137b538f5910cdc5ce2e9c4a5f404d0b05a8e7393d24f0a4d6eea4
hovercard-subject-tagpull_request:1252079198
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///voltron/pull_requests_fragments/pull_request_layout
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/tyleragypt/JavaVulnerableLab/134/pull_request_layout
twitter:imagehttps://opengraph.githubassets.com/59dd641be799122de29654f08fe0759926796af3ca6e1ceb5af0e10d8e852201/tyleragypt/JavaVulnerableLab/pull/134
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/59dd641be799122de29654f08fe0759926796af3ca6e1ceb5af0e10d8e852201/tyleragypt/JavaVulnerableLab/pull/134
og:image:altSnyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable de...
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
og:author:usernamesnyk-bot
hostnamegithub.com
expected-hostnamegithub.com
None17a57ee6ab03686731c491fccb57e6a97c066a29d7cdf1a7d83c46f5c56684fc
turbo-cache-controlno-cache
go-importgithub.com/tyleragypt/JavaVulnerableLab git https://github.com/tyleragypt/JavaVulnerableLab.git
octolytics-dimension-user_id10565362
octolytics-dimension-user_logintyleragypt
octolytics-dimension-repository_id383885620
octolytics-dimension-repository_nwotyleragypt/JavaVulnerableLab
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forktrue
octolytics-dimension-repository_parent_id301707927
octolytics-dimension-repository_parent_nwocx-maty-siman/JavaVulnerableLab
octolytics-dimension-repository_network_root_id301707927
octolytics-dimension-repository_network_root_nwocx-maty-siman/JavaVulnerableLab
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release5cb870aa6b86b87be75e23ca7caec54726a25af9
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://github.com/tyleragypt/JavaVulnerableLab/pull/134#start-of-content
https://github.com/
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F134
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub Copilot appDirect agents from issue to mergehttps://github.com/features/ai/github-app
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
View all resourceshttps://github.com/resources
GitHub SponsorsFund open source developershttps://github.com/open-source/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/open-source/accelerator
GitHub Starshttps://stars.github.com
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/enterprise/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F134
Sign up https://github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=tyleragypt%2FJavaVulnerableLab
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/134
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/134
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/134
tyleragypt https://github.com/tyleragypt
JavaVulnerableLabhttps://github.com/tyleragypt/JavaVulnerableLab
cx-maty-siman/JavaVulnerableLabhttps://github.com/cx-maty-siman/JavaVulnerableLab
Notifications https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Fork 0 https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Star 0 https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Code https://github.com/tyleragypt/JavaVulnerableLab
Issues 114 https://github.com/tyleragypt/JavaVulnerableLab/issues
Pull requests 44 https://github.com/tyleragypt/JavaVulnerableLab/pulls
Actions https://github.com/tyleragypt/JavaVulnerableLab/actions
Projects https://github.com/tyleragypt/JavaVulnerableLab/projects
Security and quality 0 https://github.com/tyleragypt/JavaVulnerableLab/security
Insights https://github.com/tyleragypt/JavaVulnerableLab/pulse
Code https://github.com/tyleragypt/JavaVulnerableLab
Issues https://github.com/tyleragypt/JavaVulnerableLab/issues
Pull requests https://github.com/tyleragypt/JavaVulnerableLab/pulls
Actions https://github.com/tyleragypt/JavaVulnerableLab/actions
Projects https://github.com/tyleragypt/JavaVulnerableLab/projects
Security and quality https://github.com/tyleragypt/JavaVulnerableLab/security
Insights https://github.com/tyleragypt/JavaVulnerableLab/pulse
snyk-bothttps://github.com/snyk-bot
masterhttps://github.com/tyleragypt/JavaVulnerableLab/tree/master
snyk-fix-ff764cf70b363a0f06e4ece2a081a440https://github.com/tyleragypt/JavaVulnerableLab/tree/snyk-fix-ff764cf70b363a0f06e4ece2a081a440
Conversationhttps://github.com/tyleragypt/JavaVulnerableLab/pull/134
Commits1 (1)https://github.com/tyleragypt/JavaVulnerableLab/pull/134/commits
Checkshttps://github.com/tyleragypt/JavaVulnerableLab/pull/134/checks
Files changedhttps://github.com/tyleragypt/JavaVulnerableLab/pull/134/files
[Snyk] Security upgrade org.apache.tomcat:tomcat-coyote from 9.0.22 to 9.0.71https://github.com/tyleragypt/JavaVulnerableLab/pull/134#top
snyk-bothttps://github.com/snyk-bot
masterhttps://github.com/tyleragypt/JavaVulnerableLab/tree/master
snyk-fix-ff764cf70b363a0f06e4ece2a081a440https://github.com/tyleragypt/JavaVulnerableLab/tree/snyk-fix-ff764cf70b363a0f06e4ece2a081a440
https://github.com/snyk-bot
snyk-bothttps://github.com/snyk-bot
Feb 23, 2023https://github.com/tyleragypt/JavaVulnerableLab/pull/134#issue-1597296328
https://camo.githubusercontent.com/897804057754d6067a7a639c92134808cc218eaa2943bad8adf8944ec615d78a/68747470733a2f2f7265732e636c6f7564696e6172792e636f6d2f736e796b2f696d6167652f75706c6f61642f775f32302c685f32302f76313536313937373831392f69636f6e2f682e706e67
SNYK-JAVA-ORGAPACHETOMCAT-3326458https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCAT-3326458
https://camo.githubusercontent.com/b0aacbd61357390478a52bbb54477a9507de2150f5b0ae47b05cc06710aa6c25/68747470733a2f2f6170692e7365676d656e742e696f2f76312f706978656c2f747261636b3f646174613d65794a33636d6c305a55746c65534936496e4a79576d785a634564485932527954485a7362306c596430645563566734576b4652546e4e434f5545774969776959573576626e6c746233567a535751694f694a6b5a446b334e6d55324d793168597a64684c5451314e3259744f446335596930774d7a68694d475133597a426d4f4755694c434a6c646d567564434936496c425349485a705a58646c5a434973496e42796233426c636e52705a584d694f6e736963484a4a5a434936496d526b4f5463325a54597a4c57466a4e3245744e4455335a6930344e7a6c694c54417a4f4749775a44646a4d4759345a534a3966513d3d
View latest project reporthttps://app.snyk.io/org/tyleragypt/project/c6cd3264-3919-4068-9827-ef2f97dda9e5?utm_source=github&utm_medium=referral&page=fix-pr
Adjust project settingshttps://app.snyk.io/org/tyleragypt/project/c6cd3264-3919-4068-9827-ef2f97dda9e5?utm_source=github&utm_medium=referral&page=fix-pr/settings
Read more about Snyk's upgrade and patch logichttps://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities
Denial of Service (DoS)https://learn.snyk.io/lessons/redos/javascript/?loc=fix-pr
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/134
https://github.com/snyk-bot
fix: pom.xml to reduce vulnerabilitieshttps://github.com/tyleragypt/JavaVulnerableLab/pull/134/commits/40ca34535c22ee2c2d81281fe269985a67b6632f
40ca345https://github.com/tyleragypt/JavaVulnerableLab/pull/134/commits/40ca34535c22ee2c2d81281fe269985a67b6632f
https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCAT-3326458https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCAT-3326458
https://github.com/tyleragypt
tyleragypthttps://github.com/tyleragypt
Feb 23, 2023https://github.com/tyleragypt/JavaVulnerableLab/pull/134#issuecomment-1442209508
https://user-images.githubusercontent.com/42570337/152954017-2101d077-2be7-48a8-8d34-618fe5a7c779.png
0b899b05-dfb6-4d83-9836-e9cc47a5a0f6https://deu.ast.checkmarx.net/projects/92586201-1074-41f8-8de6-d0062c31c9f5/scans?id=0b899b05-dfb6-4d83-9836-e9cc47a5a0f6&branch=snyk-fix-ff764cf70b363a0f06e4ece2a081a440
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
21https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//infrostructure.tf#L21
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2015-4852https://devhub.checkmarx.com/cve-details/CVE-2015-4852
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2015-4852%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2015-7501https://devhub.checkmarx.com/cve-details/CVE-2015-7501
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2015-7501%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-27782https://devhub.checkmarx.com/cve-details/CVE-2020-27782
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2020-27782%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-0084https://devhub.checkmarx.com/cve-details/CVE-2022-0084
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2022-0084%3AMaven-org.jboss.xnio%3Axnio-api-3.3.8.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-1319https://devhub.checkmarx.com/cve-details/CVE-2022-1319
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2022-1319%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-2053https://devhub.checkmarx.com/cve-details/CVE-2022-2053
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2022-2053%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45689https://devhub.checkmarx.com/cve-details/CVE-2022-45689
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2022-45689%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45690https://devhub.checkmarx.com/cve-details/CVE-2022-45690
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2022-45690%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2022-2764https://devhub.checkmarx.com/cve-details/CVE-2022-2764
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2022-2764%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/sast/description/244/8423996506624030647
31https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//src/main/webapp/vulnerability/Injection/orm.jsp#L31
Attack Vectorhttps://deu.ast.checkmarx.net/results/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=SbzVIKY1XZncJnojdCM9qFre9QY%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/sast/description/244/8423996506624030647
34https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//src/main/webapp/vulnerability/csrf/changepassword.jsp#L34
Attack Vectorhttps://deu.ast.checkmarx.net/results/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=PoVgEt9M6BT9RI7UOJr%2Bm1fsYSY%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/sast/description/244/8423996506624030647
28https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//src/main/java/org/cysecurity/cspf/jvl/model/DBConnect.java#L28
Attack Vectorhttps://deu.ast.checkmarx.net/results/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=rU8v41wAOdUfq2W2TmlFm8XGJgg%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/sast/description/244/8423996506624030647
33https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//src/main/java/org/cysecurity/cspf/jvl/controller/Install.java#L33
Attack Vectorhttps://deu.ast.checkmarx.net/results/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=fTlzoGRY3IbHQfD3ELiYUjR16iQ%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
12https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//lambda.tf#L12
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Use_Of_Hardcoded_Password_In_Confighttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/sast/description/260/11484923336620689143
6https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//src/main/webapp/WEB-INF/config.properties#L6
Attack Vectorhttps://deu.ast.checkmarx.net/results/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=fIEvrHqGgvi3EymGDm5uQ%2B4VnsI%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
21https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//infrostructure.tf#L21
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
27https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//infrostructure.tf#L27
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-11996https://devhub.checkmarx.com/cve-details/CVE-2020-11996
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2020-11996%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-13934https://devhub.checkmarx.com/cve-details/CVE-2020-13934
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2020-13934%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-17527https://devhub.checkmarx.com/cve-details/CVE-2020-17527
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2020-17527%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-1938https://devhub.checkmarx.com/cve-details/CVE-2020-1938
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2020-1938%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-25122https://devhub.checkmarx.com/cve-details/CVE-2021-25122
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2021-25122%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-30639https://devhub.checkmarx.com/cve-details/CVE-2021-30639
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2021-30639%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-41079https://devhub.checkmarx.com/cve-details/CVE-2021-41079
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2021-41079%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
5https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//s3_with_all_permissions.tf#L5
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/sast/description/89/14517067005933136034
50https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//src/main/webapp/vulnerability/Injection/orm.jsp#L50
Attack Vectorhttps://deu.ast.checkmarx.net/results/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=I0GCHUcXeRVj69RQ0QzO3XUKZzw%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2019-17569https://devhub.checkmarx.com/cve-details/CVE-2019-17569
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2019-17569%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-13943https://devhub.checkmarx.com/cve-details/CVE-2020-13943
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2020-13943%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-1935https://devhub.checkmarx.com/cve-details/CVE-2020-1935
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2020-1935%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2021-33037https://devhub.checkmarx.com/cve-details/CVE-2021-33037
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/vulnerabilities/CVE-2021-33037%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
Privacy_Violationhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/sast/description/359/12956636075206043460
64https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L64
Attack Vectorhttps://deu.ast.checkmarx.net/results/0b899b05-dfb6-4d83-9836-e9cc47a5a0f6/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=vgaiTjeSbl4n7wilcuw1TqY%2BFOk%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
1https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//rds.tf#L1
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
34https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//infrostructure.tf#L34
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
12https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-ff764cf70b363a0f06e4ece2a081a440//lambda.tf#L12
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/134
https://github.co/hiddenchars
https://github.com/tyleragypt/JavaVulnerableLab/pull/{{ revealButtonHref }}
Sign up for freehttps://github.com/join?source=comment-repo
Sign in to commenthttps://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F134
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/134
https://github.com/snyk-bot
https://github.com/tyleragypt
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width


URLs of crawlers that visited me.