Feature/vulnerable demo #39
6 new alerts including 2 critical severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 2 critical
- 4 high
See annotations below for details.
Annotations
Check failure on line 15 in vulnerable.js
Code scanning / CodeQL
Reflected cross-site scripting High
.
Check failure on line 24 in vulnerable.js
Code scanning / CodeQL
Reflected cross-site scripting High
.
Check failure on line 30 in vulnerable.js
Code scanning / CodeQL
Hard-coded credentials Critical
.
Check failure on line 44 in vulnerable.js
Code scanning / CodeQL
Missing rate limiting High
, but is not rate-limited.
Check failure on line 37 in vulnerable.js
Code scanning / CodeQL
Uncontrolled data used in path expression High
.
Check failure on line 50 in vulnerable.js
Code scanning / CodeQL
Code injection Critical
.