JavaScript Security Rules
Reshift Scans your custom JavaScript code for security bugs, below are the security issues Reshift detects.
Security Issue
Severity
CWE
OWASP Top 10
PCI DSS
Command Injection
Critical
78
A1
6.5.1
Indirect Command Injection
Critical
78
A1
6.5.1
Shell Command Injection
Critical
78
A1
6.5.1
SQL Injection
Critical
89
A1
6.5.1
NoSQL Injection
Critical
89
A1
6.5.1
Insecure Code Execution
Critical
94
A1
Insecure Code Execution (Dynamic Method)
Critical
94
A1
Insecure Access to File System
High
22
A5
ZipSlip
High
22
A5
Cross-Site Scripting
High
79
A7
Cross-Site Scripting (Stored)
High
79
A7
Cross-Site Scripting (DOM)
High
79
A7
Potential Backdoor
High
Prototype Pollution
High
400
A1
Prototype Pollution Utility
High
400
A1
Remote Prototype Pollution
High
400
A1
Insecure Deserialization
High
502
A8
XML External Entity Injection
High
611
A4
XML Entity Expansion
High
776
A4
Copy link