|
Database queries should not be vulnerable to injection attacks
|
|
1
|
177
|
September 27, 2022
|
|
SonarCloud creates GitLab Bot User
|
|
3
|
53
|
September 20, 2022
|
|
Any way to disallow any logged-in users to get full user list?
|
|
1
|
47
|
September 15, 2022
|
|
More context on the steps reported on taint vulnerability issues
|
|
0
|
136
|
September 9, 2022
|
|
AWS SES Nodemailer Transport doesn't use clear-text protocol
|
|
3
|
345
|
August 29, 2022
|
|
Oracle JSE critical patch - July 2022
|
|
2
|
80
|
August 23, 2022
|
|
S3649 and S2077 do not work
|
|
13
|
697
|
August 18, 2022
|
|
OWASP Top 10 version
|
|
12
|
915
|
August 11, 2022
|
|
SonarQube Prometheus and authentication
|
|
4
|
166
|
July 27, 2022
|
|
Security Fixes in SQ 8.9.9 and 9.5
|
|
6
|
385
|
July 25, 2022
|
|
SonarCloud Security Assessment
|
|
4
|
587
|
July 22, 2022
|
|
Security rule does not trigger: S5135 (Deserialization should not be vulnerable to injection attacks)
|
|
8
|
425
|
September 22, 2022
|
|
[Tech Story] OpenEMR 5.0.2.1: Command Injection vulnerability puts health records at risk
|
|
0
|
2834
|
October 28, 2020
|
|
Unable to register extension A.A.A.A.A.A from plugin 'securitypythonfrontend'
|
|
17
|
1681
|
July 15, 2022
|
|
Are libraries with known vulnerabilities (nugets, dlls) scanned and flagged as such?
|
|
2
|
91
|
June 20, 2022
|
|
List of supported CWE-Issues from Sonarqube
|
|
3
|
1633
|
June 15, 2022
|
|
The Java analyzer detect secrets hidden in your Java files
|
|
0
|
565
|
June 3, 2022
|
|
Use stronger SSL and TLS versions
|
|
2
|
398
|
June 2, 2022
|
|
Azurerm_storage_account incorrectly flags log configuration
|
|
6
|
388
|
April 5, 2022
|
|
HTTP Response Splitting (S5167) no longer make sense in 2021 with modern web frameworks
|
|
1
|
764
|
May 31, 2022
|
|
Vulnerability found in SonarAnalyzer.CSharp
|
|
1
|
222
|
May 30, 2022
|
|
Why this Python code vulnerable to SQLi was not flagged?
|
|
1
|
127
|
May 25, 2022
|
|
jssecurity:S3649 does not trigger(Database queries should not be vulnerable to injection attacks)
|
|
3
|
112
|
May 30, 2022
|
|
SonarLint missing PHP exec() security vulnerability (command injection)
|
|
3
|
188
|
May 13, 2022
|
|
No OWASP vulnerability found against OWASP juice shop
|
|
12
|
338
|
May 12, 2022
|
|
S5131 - Endpoints security and XSS attacks
|
|
10
|
1180
|
May 9, 2022
|
|
For some reasons unsafe usage of $_GET not flagged
|
|
4
|
122
|
April 29, 2022
|
|
A false negaitve about the rule RSPEC-6350
|
|
2
|
120
|
April 28, 2022
|
|
Use secure mode and padding scheme for ECB Not Detected Consistently Across C/JAVA Languages
|
|
4
|
480
|
April 26, 2022
|
|
SonarQube affected by Java CVE-2022-21449 relating to ECDSA signatures?
|
|
4
|
420
|
April 25, 2022
|