René's URL Explorer Experiment


Title: [Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.5.Final by tyleragypt · Pull Request #135 · tyleragypt/JavaVulnerableLab · GitHub

Open Graph Title: [Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.5.Final by tyleragypt · Pull Request #135 · tyleragypt/JavaVulnerableLab

X Title: [Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.5.Final by tyleragypt · Pull Request #135 · tyleragypt/JavaVulnerableLab

Description: lab. Contribute to tyleragypt/JavaVulnerableLab development by creating an account on GitHub.

Open Graph Description: This PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes i...

X Description: This PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes i...

Opengraph URL: https://github.com/tyleragypt/JavaVulnerableLab/pull/135

X: @github

direct link

Domain: github.com

route-pattern/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controllervoltron_pull_requests_fragments
route-actionpull_request_layout
fetch-noncev2:ea1584ac-36fd-a0ee-8432-07360c5cffff
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idC16E:22F2F5:5C62B5:78CA44:6A5B2D5A
html-safe-nonce478ba8dac689cb5d8c09c7803e81103e930a111cce5c23897428d404e7409afb
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJDMTZFOjIyRjJGNTo1QzYyQjU6NzhDQTQ0OjZBNUIyRDVBIiwidmlzaXRvcl9pZCI6IjQzNTc5MDk0OTgwNDYzOTM2OTAiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ==
visitor-hmac0491043a87fd79ea3811f33610d140b11d663e648d7ee38d6cbb280eaf62eea4
hovercard-subject-tagpull_request:1293440894
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///voltron/pull_requests_fragments/pull_request_layout
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/tyleragypt/JavaVulnerableLab/135/pull_request_layout
twitter:imagehttps://opengraph.githubassets.com/fdb8c1e73f7157d83fae22f426a1ff66e216027fae1f4364954ea322230b8af7/tyleragypt/JavaVulnerableLab/pull/135
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/fdb8c1e73f7157d83fae22f426a1ff66e216027fae1f4364954ea322230b8af7/tyleragypt/JavaVulnerableLab/pull/135
og:image:altThis PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes i...
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
og:author:usernametyleragypt
hostnamegithub.com
expected-hostnamegithub.com
None5290d7e14309ad1e76106a9c4237bd1041517e83ea182c8ab756752cb0c6940b
turbo-cache-controlno-cache
go-importgithub.com/tyleragypt/JavaVulnerableLab git https://github.com/tyleragypt/JavaVulnerableLab.git
octolytics-dimension-user_id10565362
octolytics-dimension-user_logintyleragypt
octolytics-dimension-repository_id383885620
octolytics-dimension-repository_nwotyleragypt/JavaVulnerableLab
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forktrue
octolytics-dimension-repository_parent_id301707927
octolytics-dimension-repository_parent_nwocx-maty-siman/JavaVulnerableLab
octolytics-dimension-repository_network_root_id301707927
octolytics-dimension-repository_network_root_nwocx-maty-siman/JavaVulnerableLab
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release9c975978430e9ad293956f2bbdaf153b1bd84a99
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://github.com/tyleragypt/JavaVulnerableLab/pull/135#start-of-content
https://github.com/
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F135
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub Copilot appDirect agents from issue to mergehttps://github.com/features/ai/github-app
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
View all resourceshttps://github.com/resources
GitHub SponsorsFund open source developershttps://github.com/open-source/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/open-source/accelerator
GitHub Starshttps://stars.github.com
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/enterprise/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F135
Sign up https://github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=tyleragypt%2FJavaVulnerableLab
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/135
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/135
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/135
tyleragypt https://github.com/tyleragypt
JavaVulnerableLabhttps://github.com/tyleragypt/JavaVulnerableLab
cx-maty-siman/JavaVulnerableLabhttps://github.com/cx-maty-siman/JavaVulnerableLab
Notifications https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Fork 0 https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Star 0 https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Code https://github.com/tyleragypt/JavaVulnerableLab
Issues 114 https://github.com/tyleragypt/JavaVulnerableLab/issues
Pull requests 44 https://github.com/tyleragypt/JavaVulnerableLab/pulls
Actions https://github.com/tyleragypt/JavaVulnerableLab/actions
Projects https://github.com/tyleragypt/JavaVulnerableLab/projects
Security and quality 0 https://github.com/tyleragypt/JavaVulnerableLab/security
Insights https://github.com/tyleragypt/JavaVulnerableLab/pulse
Code https://github.com/tyleragypt/JavaVulnerableLab
Issues https://github.com/tyleragypt/JavaVulnerableLab/issues
Pull requests https://github.com/tyleragypt/JavaVulnerableLab/pulls
Actions https://github.com/tyleragypt/JavaVulnerableLab/actions
Projects https://github.com/tyleragypt/JavaVulnerableLab/projects
Security and quality https://github.com/tyleragypt/JavaVulnerableLab/security
Insights https://github.com/tyleragypt/JavaVulnerableLab/pulse
tyleragypthttps://github.com/tyleragypt
masterhttps://github.com/tyleragypt/JavaVulnerableLab/tree/master
snyk-fix-46f3d9014d8adec229c08b60637dcc07https://github.com/tyleragypt/JavaVulnerableLab/tree/snyk-fix-46f3d9014d8adec229c08b60637dcc07
Conversationhttps://github.com/tyleragypt/JavaVulnerableLab/pull/135
Commits1 (1)https://github.com/tyleragypt/JavaVulnerableLab/pull/135/commits
Checkshttps://github.com/tyleragypt/JavaVulnerableLab/pull/135/checks
Files changedhttps://github.com/tyleragypt/JavaVulnerableLab/pull/135/files
[Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.5.Finalhttps://github.com/tyleragypt/JavaVulnerableLab/pull/135#top
tyleragypthttps://github.com/tyleragypt
masterhttps://github.com/tyleragypt/JavaVulnerableLab/tree/master
snyk-fix-46f3d9014d8adec229c08b60637dcc07https://github.com/tyleragypt/JavaVulnerableLab/tree/snyk-fix-46f3d9014d8adec229c08b60637dcc07
https://github.com/tyleragypt
tyleragypthttps://github.com/tyleragypt
Mar 28, 2023https://github.com/tyleragypt/JavaVulnerableLab/pull/135#issue-1644445880
https://camo.githubusercontent.com/897804057754d6067a7a639c92134808cc218eaa2943bad8adf8944ec615d78a/68747470733a2f2f7265732e636c6f7564696e6172792e636f6d2f736e796b2f696d6167652f75706c6f61642f775f32302c685f32302f76313536313937373831392f69636f6e2f682e706e67
SNYK-JAVA-IOUNDERTOW-3339519https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-3339519
https://camo.githubusercontent.com/d86864c41fde17a73263ba766aa3c7e400f4915d767b1accc6a9cedff3806041/68747470733a2f2f6170692e7365676d656e742e696f2f76312f706978656c2f747261636b3f646174613d65794a33636d6c305a55746c65534936496e4a79576d785a634564485932527954485a7362306c596430645563566734576b4652546e4e434f5545774969776959573576626e6c746233567a535751694f694a6d596a6c6c596a41314f53316c5a6a686b4c54513159545974596a55335a53316c4f54597a4d6d457a4d44637959324d694c434a6c646d567564434936496c425349485a705a58646c5a434973496e42796233426c636e52705a584d694f6e736963484a4a5a434936496d5a694f5756694d4455354c57566d4f4751744e4456684e6931694e54646c4c5755354e6a4d7959544d774e7a4a6a59794a3966513d3d
View latest project reporthttps://app.snyk.io/org/tyleragypt/project/c6cd3264-3919-4068-9827-ef2f97dda9e5?utm_source=github&utm_medium=referral&page=fix-pr
Adjust project settingshttps://app.snyk.io/org/tyleragypt/project/c6cd3264-3919-4068-9827-ef2f97dda9e5?utm_source=github&utm_medium=referral&page=fix-pr/settings
Read more about Snyk's upgrade and patch logichttps://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities
Learn about vulnerability in an interactive lesson of Snyk Learn.https://learn.snyk.io/?loc=fix-pr
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/135
https://github.com/snyk-bot
fix: pom.xml to reduce vulnerabilitieshttps://github.com/tyleragypt/JavaVulnerableLab/pull/135/commits/e3b708a27845acefe8adb33db5aa0416f0d9c44d
e3b708ahttps://github.com/tyleragypt/JavaVulnerableLab/pull/135/commits/e3b708a27845acefe8adb33db5aa0416f0d9c44d
https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-3339519https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-3339519
https://github.com/tyleragypt
tyleragypthttps://github.com/tyleragypt
Mar 28, 2023https://github.com/tyleragypt/JavaVulnerableLab/pull/135#issuecomment-1487394254
https://user-images.githubusercontent.com/42570337/152954017-2101d077-2be7-48a8-8d34-618fe5a7c779.png
9f8ea0af-a022-4823-8fb2-fc46fe3d4f22https://deu.ast.checkmarx.net/projects/92586201-1074-41f8-8de6-d0062c31c9f5/scans?id=9f8ea0af-a022-4823-8fb2-fc46fe3d4f22&branch=snyk-fix-46f3d9014d8adec229c08b60637dcc07
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
21https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//infrostructure.tf#L21
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2015-4852https://devhub.checkmarx.com/cve-details/CVE-2015-4852
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2015-4852%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2015-7501https://devhub.checkmarx.com/cve-details/CVE-2015-7501
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2015-7501%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-42252https://devhub.checkmarx.com/cve-details/CVE-2022-42252
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2022-42252%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45688https://devhub.checkmarx.com/cve-details/CVE-2022-45688
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2022-45688%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45689https://devhub.checkmarx.com/cve-details/CVE-2022-45689
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2022-45689%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45690https://devhub.checkmarx.com/cve-details/CVE-2022-45690
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2022-45690%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
CVE-2021-43980https://devhub.checkmarx.com/cve-details/CVE-2021-43980
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2021-43980%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/sast/description/244/8423996506624030647
31https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//src/main/webapp/vulnerability/Injection/orm.jsp#L31
Attack Vectorhttps://deu.ast.checkmarx.net/results/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=SbzVIKY1XZncJnojdCM9qFre9QY%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/sast/description/244/8423996506624030647
34https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//src/main/webapp/vulnerability/csrf/changepassword.jsp#L34
Attack Vectorhttps://deu.ast.checkmarx.net/results/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=PoVgEt9M6BT9RI7UOJr%2Bm1fsYSY%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/sast/description/244/8423996506624030647
28https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//src/main/java/org/cysecurity/cspf/jvl/model/DBConnect.java#L28
Attack Vectorhttps://deu.ast.checkmarx.net/results/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=rU8v41wAOdUfq2W2TmlFm8XGJgg%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/sast/description/244/8423996506624030647
33https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//src/main/java/org/cysecurity/cspf/jvl/controller/Install.java#L33
Attack Vectorhttps://deu.ast.checkmarx.net/results/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=fTlzoGRY3IbHQfD3ELiYUjR16iQ%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
12https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//lambda.tf#L12
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Use_Of_Hardcoded_Password_In_Confighttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/sast/description/260/11484923336620689143
6https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//src/main/webapp/WEB-INF/config.properties#L6
Attack Vectorhttps://deu.ast.checkmarx.net/results/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=fIEvrHqGgvi3EymGDm5uQ%2B4VnsI%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
21https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//infrostructure.tf#L21
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
27https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//infrostructure.tf#L27
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2019-10212https://devhub.checkmarx.com/cve-details/CVE-2019-10212
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2019-10212%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2019-3888https://devhub.checkmarx.com/cve-details/CVE-2019-3888
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2019-3888%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-10705https://devhub.checkmarx.com/cve-details/CVE-2020-10705
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2020-10705%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-1745https://devhub.checkmarx.com/cve-details/CVE-2020-1745
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2020-1745%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-1757https://devhub.checkmarx.com/cve-details/CVE-2020-1757
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2020-1757%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-3629https://devhub.checkmarx.com/cve-details/CVE-2021-3629
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2021-3629%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-3690https://devhub.checkmarx.com/cve-details/CVE-2021-3690
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2021-3690%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-3859https://devhub.checkmarx.com/cve-details/CVE-2021-3859
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2021-3859%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
5https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//s3_with_all_permissions.tf#L5
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/sast/description/89/14517067005933136034
50https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//src/main/webapp/vulnerability/Injection/orm.jsp#L50
Attack Vectorhttps://deu.ast.checkmarx.net/results/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=I0GCHUcXeRVj69RQ0QzO3XUKZzw%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-10687https://devhub.checkmarx.com/cve-details/CVE-2020-10687
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2020-10687%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-10719https://devhub.checkmarx.com/cve-details/CVE-2020-10719
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2020-10719%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-14340https://devhub.checkmarx.com/cve-details/CVE-2020-14340
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2020-14340%3AMaven-org.jboss.xnio%3Axnio-nio-3.3.8.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2021-3597https://devhub.checkmarx.com/cve-details/CVE-2021-3597
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/vulnerabilities/CVE-2021-3597%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
Privacy_Violationhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/sast/description/359/12956636075206043460
64https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L64
Attack Vectorhttps://deu.ast.checkmarx.net/results/9f8ea0af-a022-4823-8fb2-fc46fe3d4f22/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=vgaiTjeSbl4n7wilcuw1TqY%2BFOk%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
34https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//infrostructure.tf#L34
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
12https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-46f3d9014d8adec229c08b60637dcc07//lambda.tf#L12
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/135
https://github.co/hiddenchars
https://github.com/tyleragypt/JavaVulnerableLab/pull/{{ revealButtonHref }}
Sign up for freehttps://github.com/join?source=comment-repo
Sign in to commenthttps://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F135
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/135
https://github.com/tyleragypt
https://github.com/snyk-bot
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width


URLs of crawlers that visited me.