Ruby
File Types
Mend SAST scans these file types:
.rb
.erb
Vulnerability Types
Mend SAST scans for these vulnerability types:
Vulnerability Type | CWE | Severity |
---|---|---|
SQL Injection | CWE-89 | High |
Path/Directory Traversal | CWE-22 | High |
Code Injection | CWE-94 | High |
Command Injection | CWE-78 | High |
Cross-Site Scripting | CWE-79 | High |
File Manipulation | CWE-73 | High |
HTTP Response Splitting | CWE-113 | High |
Weak Hash Strength | CWE-916 | Low |
Heap Inspection | CWE-244 | Low |
Dangerous File Extensions | CWE-530 | Low |
File Upload | CWE-434 | Low |
Dangerous HTML Embedded | CWE-79 | Low |
Cookie Without 'HttpOnly' Flag | CWE-1004 | Low |
Secret Key in Source | CWE-321 | Low |
Mass Assignment | CWE-915 | Low |
Symlink Vulnerability | CWE-59 | Low |
Miscellaneous Dangerous Functions | CWE-676 | Low |
Copyright © 2024 Mend.io (White Source Ltd.) | All rights reserved.