Explore

Filters (0) Clear filters
Languages
Level
Tags

376-400 of 589

Session configuration: Cookies: Configure Secure flag

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • security
  • web
  • Apache Shiro
  • OWASP Top 10
Session configuration: Cookies: Configure Secure flag

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • security
  • web
  • OWASP Top 10
Session configuration: Cookies: Configure Secure flag

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Web
  • OWASP Top 10
Session configuration: Cookies: Configure Secure flag

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Boot
  • OWASP Top 10
Session configuration: Cookies: Set HttpOnly flag to true

Prevent client-side scripts from accessing the cookie by setting the HttpOnly flag to true

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Web
  • OWASP Top 10
Session configuration: Cookies: Set HttpOnly flag to true

Prevent client-side scripts from accessing the cookie by setting the HttpOnly flag to true

  • error
  • java
  • security
  • web
  • Apache Shiro
  • OWASP Top 10
Session configuration: Cookies: Set HttpOnly flag to true

Prevent client-side scripts from accessing the cookie by setting the HttpOnly flag to true

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Boot
  • OWASP Top 10
Session configuration: Cookies: Set HttpOnly flag to true

Prevent client-side scripts from accessing the cookie by setting the HttpOnly flag to true

  • error
  • java
  • security
  • web
  • OWASP Top 10
Session configuration: Cookies: Set Secure flag to true

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • security
  • web
  • OWASP Top 10
Session configuration: Cookies: Set Secure flag to true

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Boot
  • OWASP Top 10
Session configuration: Cookies: Set Secure flag to true

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • security
  • web
  • Apache Shiro
  • OWASP Top 10
Session configuration: Cookies: Set Secure flag to true

Prevent a cookie being sent over unencrypted HTTP by setting the Secure flag to true

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Web
  • OWASP Top 10
Session configuration: HttpCookie: Configure HttpOnly flag

Prevent client-side scripts from accessing the cookie by setting the HttpOnly flag to true

  • error
  • java
  • security
  • web
  • OWASP Top 10
Session Configuration: Invalidate the HttpSession after logout

Delete all sessions after logout

  • warning
  • java
  • Spring
  • security
  • framework specific
  • Spring Security
  • web
Session management: Avoid CSRF: Use narrow mapping for state-changing methods

Non-specified RequestMapping method will map to any HTTP request

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Web
  • CSRF
Should use requiresSecure

Use of HTTP instead of HTTPS is insecure

  • error
  • java
  • Spring
  • security
  • framework specific
  • web
  • Spring Security
  • OWASP Top 10
SLF4J Logging: enforce usage of placeholders in the messages

Do not concatenate untrusted data in the message string, instead use placeholders ( '{}' )

  • marked_information
  • java
  • security
  • logging
  • injection
  • OWASP Top 10
  • SLF4J
  • framework specific
SLF4J Logging: Logger modifiers

The logger should be a private static final field

  • marked_information
  • java
  • SLF4J
  • framework specific
  • logging
  • quality
SLF4J Logging: Naming convention: Reserved logger name

The name "logger" should be reserved for the SLF4J logger instance. Use Refactor Rename (Shift+F6) to rename this variable.

  • marked_information
  • java
  • SLF4J
  • framework specific
  • logging
  • quality
SLF4J Logging: Naming convention: Standardise logger name

The SLF4J logger instance should be named "logger". Use Refactor Rename (Shift+F6) to rename this variable.

  • marked_information
  • java
  • SLF4J
  • framework specific
  • logging
  • quality
SLF4J Logging: Print Exceptions using SLF4J instead

Standardise on SLF4J by replacing this call

  • marked_information
  • java
  • security
  • SLF4J
  • framework specific
  • logging
SLF4J Logging: Replace java.util.logging with SLF4J (Debug)

Standardise on SLF4J by replacing this call

  • marked_information
  • java
  • SLF4J
  • framework specific
  • logging
  • quality
SLF4J Logging: Replace java.util.logging with SLF4J (Error)

Standardise on SLF4J by replacing this call

  • marked_information
  • java
  • SLF4J
  • framework specific
  • logging
  • quality
SLF4J Logging: Replace java.util.logging with SLF4J (Info)

Standardise on SLF4J by replacing this call

  • marked_information
  • java
  • SLF4J
  • framework specific
  • logging
  • quality
SLF4J Logging: Replace java.util.logging with SLF4J (Log Debug)

Standardise on SLF4J by replacing this call

  • marked_information
  • java
  • SLF4J
  • framework specific
  • logging
  • quality