JavaScript / Node.js

Owned by David Jaffe
Last updated: Jun 13, 2022 by Michelle Friedman
1 min read

File Types

Mend SAST scans these file types:

.js

Vulnerability Types

Mend SAST scans for these vulnerability types:

Vulnerabilities

CWE

Severity

Vulnerabilities

CWE

Severity

SQL Injection

CWE-89

High

NoSQL Injection

CWE-943

High

Path/Directory Traversal

CWE-22

High

Command Injection

CWE-78

High

Code Injection

CWE-94

High

Cross-Site Scripting

CWE-79

High

DOM Based Cross-Site Scripting

CWE-79

High

Unvalidated/Open Redirect

CWE-601

High

HTTP Response Splitting

CWE-113

High

HTTP Header Injection

CWE-113

High

Regex Denial of Service (ReDoS)

CWE-400

High

Log Forging

CWE-117

Low

Cookie Injection

CWE-20

Low

Hardcoded Password/Credentials

CWE-798

Low

Use of Inherently Dangerous Function

CWE-242

Low

Weak Pseudo-Random

CWE-338

Low

Miscellaneous Dangerous Functions

CWE-676

Low

 

Copyright © 2024 Mend.io (White Source Ltd.) | All rights reserved.