Coverity Scan: webgoat-security

Project Name webgoat-security
Lines of code analyzed 66,816
On Coverity Scan since May 13, 2014
Last build analyzed a while ago
Language Java
Repository URL rtr
Homepage URL N/A
License N/A

Want to view defects or help fix defects?

 Add me to project

Analysis Metrics

Version: Version

May 14, 2014
Last Analyzed
Lines of Code Analyzed
Defect Density

Defect changes since previous build dated May 14, 2014

Newly detected

Defects by status for current build

Total defects

Note: Defect density is measured by the number of defects per 1,000 lines of code.

Analysis Metrics per Components

Component Name Pattern Ignore Line of Code Defect density
test /test/.* No 0 N/A
Other .* No 66,816 5.57

CWE Top 25 defects

ID CWE-Name Number of Defects
22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 4
78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 2
79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 16
89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') 23
327 Use of a Broken or Risky Cryptographic Algorithm 2
352 Cross-Site Request Forgery (CSRF) 13



About Coverity Scan Static Analysis

Find and fix defects in your C/C++, Java, JavaScript or C# open source project for free.

Coverity Scan tests every line of code and potential execution path. The root cause of each defect is clearly explained, making it easy to fix bugs.

Would you like to view the project defects, or help improve its quality by fixing defects?

 Add me to project