Java Security Rules
Reshift Scans your custom Java code for security bugs, below are the security issues Reshift detects.
Security Issues
Severity
CWE
PCI DSS
AWS Query Injection
Critical
943
A1
Code Execution
Critical
94
A1
Command Injection
Critical
78
A1
6.5.1
JSP Include Injection
Critical
917
A1
JSP Spring Eval
Critical
95
A1
SQL Injection
Critical
89
A1
6.5.1
XML External Entity Injection
Critical
611
A4
6.5.1
Reflected Cross-site Scripting
High
79
A7
DOM Cross-site Scripting
High
79
A7
Insecure Deserialization
High
502
A8
LDAP Injection
High
90
A1
6.5.1
Padding Oracle
High
463
A3
Path Tampering
High
73
Sensitive Data Exposure
High
798
A3
6.5.1
Stored Cross-site Scripting
High
79
A7
Template Injection
High
A1
6.5.1
Cross Site Request Forgery
Moderate
352
Denial of Service
Moderate
834
Insecure Crypto
Moderate
327
A3
Copy link