René's URL Explorer Experiment


Title: [Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.6.Final by tyleragypt · Pull Request #137 · tyleragypt/JavaVulnerableLab · GitHub

Open Graph Title: [Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.6.Final by tyleragypt · Pull Request #137 · tyleragypt/JavaVulnerableLab

X Title: [Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.6.Final by tyleragypt · Pull Request #137 · tyleragypt/JavaVulnerableLab

Description: lab. Contribute to tyleragypt/JavaVulnerableLab development by creating an account on GitHub.

Open Graph Description: This PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes i...

X Description: This PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes i...

Opengraph URL: https://github.com/tyleragypt/JavaVulnerableLab/pull/137

X: @github

direct link

Domain: github.com

route-pattern/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controllervoltron_pull_requests_fragments
route-actionpull_request_layout
fetch-noncev2:7d0c2858-c8bb-a5e9-7e85-3ee6c8d39d18
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idC138:A9374:9C295:DAEB3:6A5A40DF
html-safe-nonce32cd535864089806a3ac3102d5ed85baf55307b5de0944b6cbfb2f534f23519b
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJDMTM4OkE5Mzc0OjlDMjk1OkRBRUIzOjZBNUE0MERGIiwidmlzaXRvcl9pZCI6IjM3MDU2Nzc4NzIxODM1NDM5OSIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmacba9d7068eaf9a9d5a07d81b6bc87db03c599920596fee7cd094975c8ac876928
hovercard-subject-tagpull_request:1357994096
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///voltron/pull_requests_fragments/pull_request_layout
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/tyleragypt/JavaVulnerableLab/137/pull_request_layout
twitter:imagehttps://opengraph.githubassets.com/17014d7cce2974a80f1c659ce596f4abc355ecb759b0651031b89283d738f51f/tyleragypt/JavaVulnerableLab/pull/137
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/17014d7cce2974a80f1c659ce596f4abc355ecb759b0651031b89283d738f51f/tyleragypt/JavaVulnerableLab/pull/137
og:image:altThis PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project. Changes i...
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
og:author:usernametyleragypt
hostnamegithub.com
expected-hostnamegithub.com
None19c67ad7579d2401ff06e88a32ef45460fbb40fab3191c7f7582d5e166f326fc
turbo-cache-controlno-cache
go-importgithub.com/tyleragypt/JavaVulnerableLab git https://github.com/tyleragypt/JavaVulnerableLab.git
octolytics-dimension-user_id10565362
octolytics-dimension-user_logintyleragypt
octolytics-dimension-repository_id383885620
octolytics-dimension-repository_nwotyleragypt/JavaVulnerableLab
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forktrue
octolytics-dimension-repository_parent_id301707927
octolytics-dimension-repository_parent_nwocx-maty-siman/JavaVulnerableLab
octolytics-dimension-repository_network_root_id301707927
octolytics-dimension-repository_network_root_nwocx-maty-siman/JavaVulnerableLab
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
releasee618485bff22dab2ef1ffb4e34e4e6626688df69
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://github.com/tyleragypt/JavaVulnerableLab/pull/137#start-of-content
https://github.com/
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F137
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub Copilot appDirect agents from issue to mergehttps://github.com/features/ai/github-app
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
View all resourceshttps://github.com/resources
GitHub SponsorsFund open source developershttps://github.com/open-source/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/open-source/accelerator
GitHub Starshttps://stars.github.com
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/enterprise/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F137
Sign up https://github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=tyleragypt%2FJavaVulnerableLab
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/137
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/137
Reloadhttps://github.com/tyleragypt/JavaVulnerableLab/pull/137
tyleragypt https://github.com/tyleragypt
JavaVulnerableLabhttps://github.com/tyleragypt/JavaVulnerableLab
cx-maty-siman/JavaVulnerableLabhttps://github.com/cx-maty-siman/JavaVulnerableLab
Notifications https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Fork 0 https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Star 0 https://github.com/login?return_to=%2Ftyleragypt%2FJavaVulnerableLab
Code https://github.com/tyleragypt/JavaVulnerableLab
Issues 114 https://github.com/tyleragypt/JavaVulnerableLab/issues
Pull requests 44 https://github.com/tyleragypt/JavaVulnerableLab/pulls
Actions https://github.com/tyleragypt/JavaVulnerableLab/actions
Projects https://github.com/tyleragypt/JavaVulnerableLab/projects
Security and quality 0 https://github.com/tyleragypt/JavaVulnerableLab/security
Insights https://github.com/tyleragypt/JavaVulnerableLab/pulse
Code https://github.com/tyleragypt/JavaVulnerableLab
Issues https://github.com/tyleragypt/JavaVulnerableLab/issues
Pull requests https://github.com/tyleragypt/JavaVulnerableLab/pulls
Actions https://github.com/tyleragypt/JavaVulnerableLab/actions
Projects https://github.com/tyleragypt/JavaVulnerableLab/projects
Security and quality https://github.com/tyleragypt/JavaVulnerableLab/security
Insights https://github.com/tyleragypt/JavaVulnerableLab/pulse
tyleragypthttps://github.com/tyleragypt
masterhttps://github.com/tyleragypt/JavaVulnerableLab/tree/master
snyk-fix-8eca3e27a6727b576553ef667a0581dehttps://github.com/tyleragypt/JavaVulnerableLab/tree/snyk-fix-8eca3e27a6727b576553ef667a0581de
Conversationhttps://github.com/tyleragypt/JavaVulnerableLab/pull/137
Commits1 (1)https://github.com/tyleragypt/JavaVulnerableLab/pull/137/commits
Checkshttps://github.com/tyleragypt/JavaVulnerableLab/pull/137/checks
Files changedhttps://github.com/tyleragypt/JavaVulnerableLab/pull/137/files
[Snyk] Security upgrade io.undertow:undertow-core from 2.0.9.Final to 2.3.6.Finalhttps://github.com/tyleragypt/JavaVulnerableLab/pull/137#top
tyleragypthttps://github.com/tyleragypt
masterhttps://github.com/tyleragypt/JavaVulnerableLab/tree/master
snyk-fix-8eca3e27a6727b576553ef667a0581dehttps://github.com/tyleragypt/JavaVulnerableLab/tree/snyk-fix-8eca3e27a6727b576553ef667a0581de
https://github.com/tyleragypt
tyleragypthttps://github.com/tyleragypt
May 20, 2023https://github.com/tyleragypt/JavaVulnerableLab/pull/137#issue-1718218964
https://camo.githubusercontent.com/b6d6970865136fcdb55f0af31942b6b075fc660d3af4313531385d68e1775598/68747470733a2f2f7265732e636c6f7564696e6172792e636f6d2f736e796b2f696d6167652f75706c6f61642f775f32302c685f32302f76313536313937373831392f69636f6e2f6d2e706e67
SNYK-JAVA-IOUNDERTOW-3358786https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-3358786
https://camo.githubusercontent.com/594e884b6d3f81caf9aa9a107147608ea7ab79b0ad40a8d62a87c0c9c568685a/68747470733a2f2f6170692e7365676d656e742e696f2f76312f706978656c2f747261636b3f646174613d65794a33636d6c305a55746c65534936496e4a79576d785a634564485932527954485a7362306c596430645563566734576b4652546e4e434f5545774969776959573576626e6c746233567a535751694f6949785a4745794d3245784d43316d5a44517a4c5451774e6d49744f44466a5969316c5a6a566a4d4441354e54686a4e6a55694c434a6c646d567564434936496c425349485a705a58646c5a434973496e42796233426c636e52705a584d694f6e736963484a4a5a434936496a466b5954497a595445774c575a6b4e444d744e444132596930344d574e694c57566d4e574d774d446b314f474d324e534a3966513d3d
View latest project reporthttps://app.snyk.io/org/tyleragypt/project/c6cd3264-3919-4068-9827-ef2f97dda9e5?utm_source=github&utm_medium=referral&page=fix-pr
Adjust project settingshttps://app.snyk.io/org/tyleragypt/project/c6cd3264-3919-4068-9827-ef2f97dda9e5?utm_source=github&utm_medium=referral&page=fix-pr/settings
Read more about Snyk's upgrade and patch logichttps://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities
Denial of Service (DoS)https://learn.snyk.io/lessons/redos/javascript/?loc=fix-pr
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/137
https://github.com/snyk-bot
fix: pom.xml to reduce vulnerabilitieshttps://github.com/tyleragypt/JavaVulnerableLab/pull/137/commits/8c2933b98ea232f04acd4e2ddb17c86526ae5611
8c2933bhttps://github.com/tyleragypt/JavaVulnerableLab/pull/137/commits/8c2933b98ea232f04acd4e2ddb17c86526ae5611
https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-3358786https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-3358786
https://github.com/tyleragypt
tyleragypthttps://github.com/tyleragypt
May 20, 2023https://github.com/tyleragypt/JavaVulnerableLab/pull/137#issuecomment-1555946334
https://user-images.githubusercontent.com/42570337/152954017-2101d077-2be7-48a8-8d34-618fe5a7c779.png
e21c8054-3cd0-40ec-a4c0-cedb79bbde29https://deu.ast.checkmarx.net/projects/92586201-1074-41f8-8de6-d0062c31c9f5/scans?id=e21c8054-3cd0-40ec-a4c0-cedb79bbde29&branch=snyk-fix-8eca3e27a6727b576553ef667a0581de
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
21https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//infrostructure.tf#L21
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2015-4852https://devhub.checkmarx.com/cve-details/CVE-2015-4852
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2015-4852%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2015-7501https://devhub.checkmarx.com/cve-details/CVE-2015-7501
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2015-7501%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-42252https://devhub.checkmarx.com/cve-details/CVE-2022-42252
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2022-42252%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45688https://devhub.checkmarx.com/cve-details/CVE-2022-45688
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2022-45688%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45689https://devhub.checkmarx.com/cve-details/CVE-2022-45689
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2022-45689%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2022-45690https://devhub.checkmarx.com/cve-details/CVE-2022-45690
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2022-45690%3AMaven-org.json%3Ajson-20131018/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
CVE-2021-43980https://devhub.checkmarx.com/cve-details/CVE-2021-43980
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2021-43980%3AMaven-org.apache.tomcat%3Atomcat-coyote-9.0.22/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/244/8423996506624030647
31https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/vulnerability/Injection/orm.jsp#L31
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=SbzVIKY1XZncJnojdCM9qFre9QY%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/244/8423996506624030647
34https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/vulnerability/csrf/changepassword.jsp#L34
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=PoVgEt9M6BT9RI7UOJr%2Bm1fsYSY%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/244/8423996506624030647
28https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/model/DBConnect.java#L28
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=rU8v41wAOdUfq2W2TmlFm8XGJgg%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Heap_Inspectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/244/8423996506624030647
33https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/Install.java#L33
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=fTlzoGRY3IbHQfD3ELiYUjR16iQ%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
12https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//lambda.tf#L12
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
Use_Of_Hardcoded_Password_In_Confighttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/260/11484923336620689143
6https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/WEB-INF/config.properties#L6
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=fIEvrHqGgvi3EymGDm5uQ%2B4VnsI%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
21https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//infrostructure.tf#L21
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
27https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//infrostructure.tf#L27
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2019-10212https://devhub.checkmarx.com/cve-details/CVE-2019-10212
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2019-10212%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2019-3888https://devhub.checkmarx.com/cve-details/CVE-2019-3888
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2019-3888%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-10705https://devhub.checkmarx.com/cve-details/CVE-2020-10705
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2020-10705%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-1745https://devhub.checkmarx.com/cve-details/CVE-2020-1745
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2020-1745%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2020-1757https://devhub.checkmarx.com/cve-details/CVE-2020-1757
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2020-1757%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-3629https://devhub.checkmarx.com/cve-details/CVE-2021-3629
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2021-3629%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-3690https://devhub.checkmarx.com/cve-details/CVE-2021-3690
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2021-3690%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
CVE-2021-3859https://devhub.checkmarx.com/cve-details/CVE-2021-3859
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2021-3859%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
5https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//s3_with_all_permissions.tf#L5
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
44https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L44
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=PbKRbesGywbPxqkOI3ivDgmNADI%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
44https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L44
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=VYOsqwRN4uvYQ8H3JJYst2amlrM%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
44https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L44
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=WfDz0ZwaQBjA0Omdusz6GjCQIzA%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
44https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L44
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=9Ya%2F6U%2Brpi8tuJ3ZjNIwZlj0FHs%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
43https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L43
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=eRxkiBjW5y1xzldI569v0sNvfQE%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
43https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L43
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=Q%2FJze4laC3ISQo4ONHMqH9%2FSfhI%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
43https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L43
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=HvQNoef2IsVFwygMUpsAX07RLUU%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
43https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L43
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=pBBglc%2FC0zkOUHHHl8NLK5c90WQ%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
50https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/vulnerability/Injection/orm.jsp#L50
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=I0GCHUcXeRVj69RQ0QzO3XUKZzw%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
11https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/admin/adminlogin.jsp#L11
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=falr8q4uUy6V%2BBDhhijMAta%2F9R4%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
11https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/admin/adminlogin.jsp#L11
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=ggoDEbEizcwNRJjh5XVh44ixitw%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
11https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/admin/adminlogin.jsp#L11
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=EVFYOvbtyYx6%2BGnhe8MBNOaw9vU%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952546-9232b4c8-a6bb-44a6-8d55-ba676b398731.png
SQL_Injectionhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/89/14517067005933136034
11https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/webapp/admin/adminlogin.jsp#L11
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=WF4FPO79a%2FT1WOAaWxW7R6Cl4Qk%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-10687https://devhub.checkmarx.com/cve-details/CVE-2020-10687
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2020-10687%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-10719https://devhub.checkmarx.com/cve-details/CVE-2020-10719
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2020-10719%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2020-14340https://devhub.checkmarx.com/cve-details/CVE-2020-14340
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2020-14340%3AMaven-org.jboss.xnio%3Axnio-nio-3.3.8.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
CVE-2021-3597https://devhub.checkmarx.com/cve-details/CVE-2021-3597
Vulnerable Packagehttps://deu.ast.checkmarx.net/sca/#/projects/92586201-1074-41f8-8de6-d0062c31c9f5/reports/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/vulnerabilities/CVE-2021-3597%3AMaven-io.undertow%3Aundertow-core-2.0.9.Final/vulnerabilityDetails
https://user-images.githubusercontent.com/42570337/152952809-c4159077-9c06-4ed9-bb5c-894799acf2d4.png
Privacy_Violationhttps://deu.ast.checkmarx.net/results/92586201-1074-41f8-8de6-d0062c31c9f5/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/sast/description/359/12956636075206043460
64https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//src/main/java/org/cysecurity/cspf/jvl/controller/LoginValidator.java#L64
Attack Vectorhttps://deu.ast.checkmarx.net/results/e21c8054-3cd0-40ec-a4c0-cedb79bbde29/92586201-1074-41f8-8de6-d0062c31c9f5/sast?result-id=vgaiTjeSbl4n7wilcuw1TqY%2BFOk%3D&redirect=true
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
34https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//infrostructure.tf#L34
https://user-images.githubusercontent.com/42570337/152952890-19e8bf82-63bd-45a0-9a01-4a324fc10635.png
12https://github.com/tyleragypt/JavaVulnerableLab/blob/snyk-fix-8eca3e27a6727b576553ef667a0581de//lambda.tf#L12
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/137
https://github.co/hiddenchars
https://github.com/tyleragypt/JavaVulnerableLab/pull/{{ revealButtonHref }}
Sign up for freehttps://github.com/join?source=comment-repo
Sign in to commenthttps://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftyleragypt%2FJavaVulnerableLab%2Fpull%2F137
Please reload this pagehttps://github.com/tyleragypt/JavaVulnerableLab/pull/137
https://github.com/tyleragypt
https://github.com/snyk-bot
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width


URLs of crawlers that visited me.