...
Tool | Version | Checker | Description | ||||||
---|---|---|---|---|---|---|---|---|---|
The Checker Framework |
| Tainting Checker | Trust and security errors (see Chapter 8) | ||||||
CodeSonar |
| FB.SECURITY.SQL_PREPARED_STATEMENT_GENERATED_FROM_NONCONSTANT_STRING FB.SECURITY.SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE | A prepared statement is generated from a nonconstant String Nonconstant string passed to execute method on an SQL statement | ||||||
Coverity | 7.5 | SQLI | Implemented | ||||||
Findbugs | 1.0 | SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE | Implemented | ||||||
Fortify | 1.0 | HTTP_Response_Splitting | Implemented | ||||||
Klocwork | SV.DATA.BOUND | Implemented | |||||||
Parasoft Jtest | 9.5 | BD-SECURITY-TDSQL | Implemented | ||||||
SonarQube Java Plugin |
| S2077 | Implemented |
Related Vulnerabilities
...