CodeSent Rules - Comprehensive API Security & Static Analysis

High Critical

Name	Scopes	Tags	Links
High
Target URL is tainted by user input	Step	Data Validation	CWE-22 CWE-233 CWE-918 CWE-20
Unsafe regular expression	Step	Data Validation	CWE-1333
Unsafe variable is used to define host	Step	Data Validation	CWE-20
Use of weak hash algorithms	AssignMessage HMAC JavaScript	Secure Configuration	CWE-327
User-controlled data in ServiceCallout	Step	Data Validation	CWE-233 CWE-20