CWE-103

Struts: Incomplete validate() Method Definition

AI Translation Available

The product has a validator form that either does not define a validate() method, or defines a validate() method but does not call super.validate().

Status

draft

Abstraction

variant

Affected Platforms

Java

Extended Description

AI Translation

If the code does not call super.validate(), the Validation Framework cannot check the contents of the form against a validation form. In other words, the validation framework will be disabled for the given form.

Technical Details

AI Translation

Common Consequences

other confidentiality integrity availability

Impacts

other

Detection Methods

automated static analysis

Potential Mitigations

Phases:

implementation

Descriptions:

• Implement the validate() method and call super.validate() within that method.

AI Generated Translation

Common Consequences

altro riservatezza integrità disponibilità

Impacts

altro

Detection Methods

analisi statica automatizzata

Potential Mitigations

Phases:

implementazione

Descriptions:

• Implementa il metodo validate() e chiama super.validate() all’interno di quel metodo.

CWE-103

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Iscriviti alla newsletter