|
|
@@ -115,20 +115,20 @@ public final class SecurityStandards { |
|
|
|
public enum SQCategory { |
|
|
|
BUFFER_OVERFLOW("buffer-overflow", HIGH), |
|
|
|
SQL_INJECTION("sql-injection", HIGH), |
|
|
|
RCE("rce", MEDIUM), |
|
|
|
OBJECT_INJECTION("object-injection", LOW), |
|
|
|
COMMAND_INJECTION("command-injection", HIGH), |
|
|
|
PATH_TRAVERSAL_INJECTION("path-traversal-injection", HIGH), |
|
|
|
LDAP_INJECTION("ldap-injection", LOW), |
|
|
|
XPATH_INJECTION("xpath-injection", LOW), |
|
|
|
RCE("rce", MEDIUM), |
|
|
|
LOG_INJECTION("log-injection", LOW), |
|
|
|
XXE("xxe", MEDIUM), |
|
|
|
XSS("xss", HIGH), |
|
|
|
DOS("dos", MEDIUM), |
|
|
|
SSRF("ssrf", MEDIUM), |
|
|
|
CSRF("csrf", HIGH), |
|
|
|
XSS("xss", HIGH), |
|
|
|
LOG_INJECTION("log-injection", LOW), |
|
|
|
HTTP_RESPONSE_SPLITTING("http-response-splitting", LOW), |
|
|
|
OPEN_REDIRECT("open-redirect", MEDIUM), |
|
|
|
XXE("xxe", MEDIUM), |
|
|
|
OBJECT_INJECTION("object-injection", LOW), |
|
|
|
WEAK_CRYPTOGRAPHY("weak-cryptography", MEDIUM), |
|
|
|
AUTH("auth", HIGH), |
|
|
|
INSECURE_CONF("insecure-conf", LOW), |