Detector for information exposure in Scala Play. If a controller returns a variable containing the result of a tainted call to the configuration manager, an attacker could use it to obtain sensitive data like the application key or the database credentials. Taints can now be annotated with the ...
CWE-200 An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information. CVE-2016-4655 CVE-2016-4655 The kernel in Apple… CWE-20 CWE-20 The product does not… CWE-119 CWE-119 The software...