XML rules
Rule (1) Debug Features Enabled
CWE (215) Insertion of Sensitive Information Into Debugging Code
Rule (2) Use of Hardcoded Credentials
CWE (259, 798) Use of Hard-coded Password, Use of Hard-coded Credentials
OWASP Top 10/SANS 25: OWASP Top Ten 2021 Category A07:2021 - Identification and Authentication Failures
OWASP Top 10/SANS 25: SANS/CWE Top 25
Rule (3) ASP SSL Disabled
CWE (319) Cleartext Transmission of Sensitive Information
OWASP Top 10/SANS 25: OWASP Top Ten 2021 Category A02:2021 - Cryptographic Failures
Rule (4) Android Debug Mode Enabled
CWE (489) Active Debug Code
Rule (5) Struts Development Mode Enabled
CWE (489) Active Debug Code
Rule (6) Request Validation Disabled
CWE (554) ASP.NET Misconfiguration: Not Using Input Validation Framework
Last updated