SEI CERT Oracle Coding Standard for Java

Space shortcuts

Page tree

Title: MSC11-J. Do not let session information leak within a servlet  
Author: David Svoboda Jun 17, 2014
Last Changed by: G. Ann Campbell Jul 21, 2017
Tiny Link: (useful for email) https://wiki.sei.cmu.edu/confluence/x/2TZGBQ
Export As: Word · PDF  
Incoming Links
SEI CERT Oracle Coding Standard for Java (1)
    Page: MSC10-J. Do not use OAuth 2.0 implicit grant (unmodified) for authentication
Hierarchy
Parent Page
    Page: Rule 49. Miscellaneous (MSC)
Labels
Global Labels (4)
Recent Changes
Time Editor  
Jul 21, 2017 10:12 G. Ann Campbell View Changes
Feb 26, 2016 11:24 G. Ann Campbell View Changes
Jul 13, 2015 09:28 Carol J. Lallier View Changes
Jul 13, 2015 09:20 Carol J. Lallier View Changes
Dec 15, 2014 11:00 Fred Long  
Outgoing Links
External Links (7)
    cwe.mitre.org/
    docs.oracle.com/javaee/6/api/index.html?javax/servlet/http/…
    www.hpenterprisesecurity.com/vulncat/en/vulncat/java/single…
    https://www.sonarsource.com/products/codeanalyzers/sonarjav…
    tomcat.apache.org/
    cwe.mitre.org/data/definitions/543.html
    https://www.securecoding.cert.org/confluence/pages/viewpage…
SEI CERT Oracle Coding Standard for Java (10)     Page: Rule AA. References
    Page: LCK00-J. Use private final lock objects to synchronize classes that may interact with untrusted code
    Page: VNA01-J. Ensure visibility of shared references to immutable objects
    Home page: SEI CERT Oracle Coding Standard for Java
    Page: Rule 50. Android (DRD)
    Page: Rule BB. Glossary
    Page: SonarQube
    Page: MSC07-J. Prevent multiple instantiations of singleton objects
    Page: SonarQube_V
    Page: MSC10-J. Do not use OAuth 2.0 implicit grant (unmodified) for authentication