Page History

...

Tool

Version

Checker

Description

Include Page

	The Checker Framework_V
	The Checker Framework_V

Tainting Checker

Trust and security errors (see Chapter 8)

CodeSonar

Include Page

	CodeSonar_V
	CodeSonar_V

FB.SECURITY.SQL_PREPARED_STATEMENT_GENERATED_FROM_NONCONSTANT_STRING
FB.SECURITY.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE

A prepared statement is generated from a nonconstant String
Nonconstant string passed to execute method on an SQL statement

Coverity

7.5

SQLI
FB.SQL_PREPARED_STATEMENT_GENERATED_
FB.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE

Implemented

Findbugs

1.0

SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE

Implemented

Fortify

1.0

HTTP_Response_Splitting
SQL_Injection__Persistence
SQL_Injection

Implemented

Klocwork

SV.DATA.BOUND
SV.DATA.DB
SV.HTTP_SPLIT
SV.PATH
SV.PATH.INJ
SV.SQL

Implemented

Parasoft Jtest

Include Page

	Parasoft_V
	Parasoft_V

BD-SECURITY-TDSQL

Implemented

SonarQube Java Plugin

Include Page

	SonarQube Java Plugin_V
	SonarQube Java Plugin_V

S2077 - Executing SQL queries is security-sensitive

S3649 - SQL queries should not be vulnerable to injection attacks

Implemented

Related Vulnerabilities

...

Space shortcuts

Page tree

Versions Compared

Old Version 197

New Version 198

Key

Related Vulnerabilities