Check input URIs to avoid potential security vulnerability #14
Description
| preparation/transform/src/main/java/gov/nasa/pds/transform/constants/Constants.java | 90 | Local-user-controlled data in path expression (CWE-022) | Local-user-controlled data in path expression (CWE-022). Accessing paths influenced by users can allow an attacker to access unexpected resources. | Y | Will investigate a fix. | 3 | CWE-022 | Test extended variable to ensure no special characters before being opened potential redirect vulnerability. |
|---|