Coverity Scan: webgoat-security-study
| Project Name | webgoat-security-study |
|---|---|
| Lines of code analyzed | 88,969 |
| On Coverity Scan since | Sep 13, 2015 |
| Last build analyzed | a while ago |
| Language | Java |
| Repository URL | webgoat-security-study |
| Homepage URL | N/A |
| License | N/A |
Preview - Project Summary
Want to view defects or help fix defects?
Add me to projectAnalysis Metrics
Version: 6.0.1
- Sep 14, 2015
- Last Analyzed
- 88,969
- Lines of Code Analyzed
- 4.21
- Defect Density
Defects by status for current build
- 375
- Total defects
- 375
- Outstanding
- 0
- Fixed
Note: Defect density is measured by the number of defects per 1,000 lines of code.
Analysis Metrics per Components
| Component Name | Pattern | Ignore | Line of Code | Defect density |
|---|---|---|---|---|
| Other | .* | No | 88,969 | 4.21 |
CWE Top 25 defects
| ID | CWE-Name | Number of Defects |
|---|---|---|
| 22 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | 4 |
| 78 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') | 2 |
| 79 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 8 |
| 89 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | 22 |
| 327 | Use of a Broken or Risky Cryptographic Algorithm | 2 |
| 352 | Cross-Site Request Forgery (CSRF) | 15 |
| 798 | Use of Hard-coded Credentials | 1 |
Loading...
Loading...
Loading...
About Coverity Scan Static Analysis
Find and fix defects in your C/C++, Java, JavaScript or C# open source project for free.
Coverity Scan tests every line of code and potential execution path. The root cause of each defect is clearly explained, making it easy to fix bugs.
