Stored_XSS @ /BookDetail_jsp.java

[margaritalm]

Checkmarx (SAST): Stored_XSS
Security Issue: Read More about Stored_XSS
Checkmarx Project: margaritalm/BookStore_Small_CLI_small
Repository URL: https://github.com/margaritalm/BookStore_Small_CLI_small
Branch: master
Scan ID: 79dde67e-447e-480d-9f9e-f0bfb2e3e6f8

---

The method Detail_Show embeds untrusted data in generated output with print, at line 621 of /BookDetail_jsp.java. This untrusted data is embedded into the output without proper sanitization or encoding, enabling an attacker to inject malicious code into the generated web-page.

The attacker would be able to alter the returned web page by saving malicious data in a data-store ahead of time. The attacker's modified data is then read from the database by the openrs method with rs, at line 54 of /BookDetail_jsp.java. This untrusted data then flows through the code straight to the output web page, without sanitization. 

This can enable a Stored Cross-Site Scripting (XSS) attack.

Result #1:
Severity: HIGH
State: TO_VERIFY
Status: RECURRENT
Attack Vector:

    1. rs: /BookDetail_jsp.java[54,24]
    2. rs: /BookDetail_jsp.java[55,13]
    3. openrs: /BookDetail_jsp.java[64,43]
    4. rsLookUp: /BookDetail_jsp.java[64,26]
    5. rsLookUp: /BookDetail_jsp.java[65,13]
    6. rsLookUp: /BookDetail_jsp.java[71,20]
    7. getString: /BookDetail_jsp.java[71,38]
    8. res: /BookDetail_jsp.java[71,14]
    9. res: /BookDetail_jsp.java[75,14]
    10. dLookUp: /BookDetail_jsp.java[605,35]
    11. fldcategory_id: /BookDetail_jsp.java[605,11]
    12. fldcategory_id: /BookDetail_jsp.java[621,310]
    13. value: /BookDetail_jsp.java[123,24]
    14. value: /BookDetail_jsp.java[126,12]
    15. toHTML: /BookDetail_jsp.java[621,309]
    16. print: /BookDetail_jsp.java[621,251]
    Review result in Checkmarx One: Stored_XSS