java - Checkmarx highlight code as sqlinjection vulnerability -


checkmarx indicates following code snippet sql injection vulnerability.

in checkmarx report descibe below code snippet shown below

"gets user input readline element. element’s value flows through code without being sanitized or validated may enable sql injection attack"

for brevity havent included full text.

inputstreamreader isr = null;     bufferedreader br = null;                     try{                                             classpathresource defaultreports = new classpathresource(dbvendor + "/sql_inserts.sql");                          isr = new inputstreamreader(defaultreports.getinputstream());                         br = new bufferedreader(isr);                          c = session.connection();                         string sqlline = null;                         while((sqlline = br.readline()) != null) {                             sqlline = sqlline.trim();                                 statement st = null;                                 try{                                     st = c.createstatement();                                     st.execute(sqlline);                                 }catch(sqlexception e){                                  }catch(exception e){                                  }finally{                                     if (st != null)                                         st.close();                                 }                             }                         }

//sql_inserts.sql file contain set of insert statements

i want convert above code checkmarx friendly way.after checkmark should not highlighted code snippet high sql injection vulnerability.

a sql injection attack consists of insertion or "injection" of sql query via input data client application.

source: sql injection - owasp

in code, shown checkmarx tool, sql query sqlline executed, unchecked. can see comes stream of sort, question source of these queries.

if stream under complete control, means know contains, can consider not-exploitable. examples of such cases can using hard-coded queries or choosing (or comparing to) defined "whitelist" - known good/allowed list of queries. important: if query strings controlled 100% trusted sources can considered not exploitable

if stream or queries can somehow controlled/changed/affected user, should consider queries untrusted , unsafe. in case, steps prevent sql injection must taken. way build queries not clear code snippet specific recommendation cannot suggested here. should go on prevention methods in owasp sql injection prevention cheat sheet , choose right 1 you.

good luck!


Comments

Post a Comment

Popular posts from this blog

python - Selenium remoteWebDriver (& SauceLabs) Firefox moseMoveTo action exception -

while performing simple hover test on firefox through selenium (3.4.0) python bindings (3.4.3) using of available os in saucelabs (except linux, latest available firefox version old), performing following actionchain: hover = actionchains(driver) hover.move_to_element(elm_men_menu).perform() it throws following error: taceback: file [...] in testhover hover.perform() file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/common/action_chains.py", line 80, in perform action() file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/common/action_chains.py", line 290, in <lambda> command.move_to, {'element': to_element.id})) file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/remote/webdriver.py", line 256, in execute self.error_handler.check_response(response) file "/usr/local/lib/python2.7/...
Read more

html - How to custom Bootstrap grid height? -

why bootstrap grid has height 591.067 ? did height came ? .main-post { padding: 20px; background-color: #fff; border: 1px solid #d8d8d8; margin-bottom: 100px; } .main-post .post-categories { margin-bottom: 10px } .main-post h3 { margin: 0 0 10px; color: #777; letter-spacing: -1px; font-weight: bold } .main-post .post-author, .main-post .post-date, .main-post .post-comments { font-size: 12px } .main-post img { display: block; margin: 10px 0; } .main-post .post-summary { line-height: 1.7; color: #888 } .main-post { color: #999 } <div class="col-sm-6"> <div class="main-post"> <h3 class="post-title"> <a href="#"> post title </a> </...
Read more

transpose - Maple isnt executing function but prints function term -

im using maple im in worksheetmode tried using maple input , 2d input , want transpose matrix a: := `<|>`(`<,>`(1, .5, -2), `<,>`(.5, 9/4+b, 5+3*b), `<,>`(-2, 5+3*b, 18+9*b+4*a)); b:= transpose(a); when exectute sheet dont translated values, there same input. matrix looks same input matrix plus function term. you can see picture in following link: why arent functions executed? meanwhile b:=a^+ doing right way , transposed matrix. other functions return function body instead needed values... if using 2d input mode (the default) space you've got between transpose , bracketed (b) interpreted multiplcation. rid of such space. also, either load package @ start of document like, with(linearalgebra): before calling transpose command package, or call it's full name like, linearalgebra:-transpose(b);
Read more