Search Results for "injection"

ClassHidra, Java-base MVC Support: - CDI ( context dependency injection ) - @SessionScoped, @ApplicationScoped; - EJB (enterprise java bean) map action/form as @Stateless, @Stateful, @Singleton; - Spring (4.*) map action/form as @Component; - RESTful (alfa) Demo - Google AppEngine - https://classhidra4ape-hrd.appspot.com/ GitHub - https://github.com/surban1974/classhidra Maven dependencies - https://github.com/surban1974/classhidra/blob/master/README.md

More than just a link checker, sitecheck is a website spider (also known as a crawler) which can assist with SEO by testing an entire site plus both inbound links from search engines and outbound links to other sites for the following issues: looping redirects (HTTP 301/302), broken links (HTTP 404), server errors (HTTP 500), spelling mistakes, low readability scores (using the Flesch Reading Ease test), missing/empty/duplicate meta tags, duplicate content, slow page speed, W3C validation errors and accessibility errors. Sitecheck can also spot some common causes of PCI compliance failure such as insecure content on secure pages, SQL injection/cross-site scripting (XSS) vulnerabilities, insecure encryption ciphers and open mail relays. Sources of information leakage such as email addresses and IP addresses in the headers or the page will be logged. Includes a separate module called domaincheck which checks the domain expiry date, SSL certificate expiry date and SPF records.

This project is abandonware. There are numerous SQL injection and XSS vulnerabilities in this product and I haven't the time to repair them at the moment. Please do not download.

...The code in the repository needs some fixing in order to be usable. Also, it needs a security review, especially in the query building part: as it is, %h, %R and %e placeholders could lead to SQL injection. If anyone wishes to maintain the project, just let me know.