Sast Rule Partition (Julian)
Rule ID | Description | Status | Comment |
---|---|---|---|
SCS0016 - Cross-Site Request Forgery (CSRF) |
Cross-Site Request Forgery (CSRF) | ||
SCS0017 - Request Validation Disabled (Attribute) |
Request Validation Disabled (Attribute) | ||
SCS0018 - Path Traversal |
Path Traversal | ||
SCS0019 - OutputCache Conflict |
OutputCache Conflict | ||
SCS0021 - Request Validation Disabled (Configuration File) |
Request Validation Disabled (Configuration File) | ||
SCS0022 - Event Validation Disabled |
Event Validation Disabled | Unfortunately, we cannot implement this pattern as it examines XML configuration files. | |
SCS0023 - View State Not Encrypted |
View State Not Encrypted | Unfortunately, we cannot implement this pattern as it examines XML configuration files. | |
SCS0024 - View State MAC Disabled |
View State MAC Disabled | Unfortunately, we cannot implement this pattern as it examines XML configuration files. | |
SCS0026 - LDAP Distinguished Name Injection |
LDAPi | ||
SCS0027 - Open Redirect |
Open Redirect | ||
SCS0028 - Insecure Deserialization |
SCS0028 - Insecure Deserialization | ||
SCS0029 - Cross-Site Scripting (XSS) |
XXS | ||
SCS0030 - Request validation is enabled only for pages (Configuration File) |
Request validation is enabled only for pages (Configuration File) | Unfortunately, we cannot implement this pattern as it examines XML configuration files. | |
SCS0031 - LDAP Filter Injection |
LDAPi | ||
SCS0032 - Password RequiredLength Too Small |
Password RequiredLength Too Small | ||
SCS0033 - Password Complexity |
Password Complexity | ||
SCS0034 - Password RequiredLength Not Set |
Password RequiredLength Not Set |
Edited by Julian Thome