Explore

Filters (0) Clear filters
Languages
Level
Tags

201-219 of 219

View details
WebView best practices: Disable Geolocation (constructor)

Enabling geolocation in the webview could lead to data exposure

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
View details
WebView best practices: Disable Geolocation (setter)

Enabling geolocation in the webview could lead to data exposure

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
View details
WebView best practices: Disable JavaScript (constructor)

Enabling JavaScript in the webview could lead to XSS

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
View details
WebView best practices: Disable JavaScript (setter)

Enabling JavaScript in the webview could lead to XSS

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
View details
WebView Best Practices: Do not allow access to local resources

Avoid targeting local resources

  • warning
  • java
  • security
  • framework specific
  • mobile
  • Android
View details
X509: Disabled validation in TrustManager

A TrustManager has overridden the getAcceptedIssuers method, and only returns null.

  • warning
  • java
  • security
  • web
  • TLS
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Add missing feature dissallow-doctype-decl

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Add missing feature external-parameter-entities

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Add missing feature load-external-dtd

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Add missing feature setExpandEntityReferences

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Add missing feature setXIncludeAware

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Set features to false

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Set features to true

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: DocumentBuilderFactory: Setters to false

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: Set missing secure processing feature

Could lead to XXE

  • error
  • java
  • OWASP Top 10
  • XML
  • XXE
  • basic protection set
  • security
View details
XXE: Set secure processing feature to true

Could lead to XXE

  • error
  • java
  • security
  • XML
  • basic protection set
  • XXE
  • OWASP Top 10
View details
XXE: XMLInputFactory: Add IS_SUPPORTING_EXTERNAL_ENTITIES feature

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: XMLInputFactory: Add SUPPORT_DTD feature

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10
View details
XXE: XMLInputFactory: Set features to false

Could lead to XXE

  • error
  • java
  • security
  • XXE
  • basic protection set
  • OWASP Top 10