Vulnerability fix (powered by Mobb Autofixer)

[msant262]

Fix for SQL Injection in SqlInjectionLesson8.java done with the help of Mobb

[sonarcloud]

Quality Gate failed

Failed conditions
1 Security Hotspot
E Reliability Rating on New Code (required ≥ A)

See analysis details on SonarCloud

Catch issues before they fail your Quality Gate with our IDE extension SonarLint

[msant262]

Checkmarx One – Scan Summary & Details – c2e0ec73-3daa-4063-8105-4be93a26875e

New Issues

Severity	Issue	Source File / Package	Checkmarx Insight
	CVE-2023-51775	Maven-org.bitbucket.b_c:jose4j-0.7.6	Vulnerable Package
	CVE-2023-5685	Maven-org.jboss.xnio:xnio-api-3.8.0.Final	Vulnerable Package
	CVE-2024-22257	Maven-org.springframework.security:spring-security-core-5.4.5	Vulnerable Package
	CVE-2024-22259	Maven-org.springframework:spring-web-5.3.4	Vulnerable Package
	Client_Potential_XSS	/webgoat-container/src/main/resources/static/js/goatApp/view/LessonContentView.js: 107	Attack Vector
	Client_Potential_XSS	/webgoat-container/src/main/resources/static/js/goatApp/view/LessonContentView.js: 106	Attack Vector
	Client_Potential_XSS	/webgoat-container/src/main/resources/static/js/goatApp/view/LessonContentView.js: 105	Attack Vector
	Client_Potential_XSS	/webgoat-container/src/main/resources/static/js/goatApp/view/LessonContentView.js: 107	Attack Vector
	Client_Potential_XSS	/webgoat-container/src/main/resources/static/js/goatApp/view/LessonContentView.js: 106	Attack Vector
	Client_Potential_XSS	/webgoat-container/src/main/resources/static/js/goatApp/view/LessonContentView.js: 105	Attack Vector
	Client_DOM_Open_Redirect	/webgoat-container/src/main/resources/static/js/libs/backbone-min.js: 1203	Attack Vector
	Client_DOM_Open_Redirect	/webgoat-container/src/main/resources/static/js/libs/backbone-min.js: 1203	Attack Vector
	Client_DOM_Open_Redirect	/webgoat-container/src/main/resources/static/js/libs/backbone-min.js: 1215	Attack Vector
	Client_DOM_Open_Redirect	/webgoat-container/src/main/resources/static/js/libs/backbone-min.js: 1203	Attack Vector
	Client_DOM_Open_Redirect	/webgoat-container/src/main/resources/static/js/libs/backbone-min.js: 1211	Attack Vector
	Client_DOM_Open_Redirect	/webgoat-container/src/main/resources/static/js/libs/backbone-min.js: 1203	Attack Vector
	Client_JQuery_Deprecated_Symbols	/webgoat-container/src/main/resources/static/js/libs/bootstrap.min.js: 505	Attack Vector
	Client_JQuery_Deprecated_Symbols	/webgoat-lessons/challenge/src/main/resources/js/bootstrap.min.js: 332	Attack Vector

Fixed Issues

Severity	Issue	Source File / Package
	SQL_Injection	/webgoat-lessons/sql-injection/src/main/java/org/owasp/webgoat/sql_injection/introduction/SqlInjectionLesson9.java: 55
	SQL_Injection	/webgoat-lessons/sql-injection/src/main/java/org/owasp/webgoat/sql_injection/introduction/SqlInjectionLesson9.java: 55
	SQL_Injection	/webgoat-lessons/sql-injection/src/main/java/org/owasp/webgoat/sql_injection/introduction/SqlInjectionLesson8.java: 54
	SQL_Injection	/webgoat-lessons/sql-injection/src/main/java/org/owasp/webgoat/sql_injection/introduction/SqlInjectionLesson8.java: 54