Xamarin C#
File Types
Mend SAST scans these file types:
.aspx
.ascx
.cs
.cshtml
.cshtm
Vulnerability Types
Mend SAST scans for these vulnerability types:
Vulnerability Type | CWE | Severity |
|---|---|---|
SQL Injection | CWE-89 | High |
Path/Directory Traversal | CWE-22 | High |
Code Injection | CWE-94 | High |
Command Injection | CWE-78 | High |
LDAP Injection | CWE-90 | High |
Deserialization of Untrusted Data | CWE-502 | High |
Man-in-the-Middle Attack | CWE-295 | High |
Insecure Data Storage | CWE-200 | High |
Insufficient Transport Layer Protection | CWE-319 | High |
Backups Allowed | CWE-312 | High |
Debuggable Application | CWE-489 | High |
File Manipulation | CWE-73 | High |
Sleep Denial of Service | CWE-400 | High |
Regex Denial of Service (ReDoS) | CWE-400 | High |
Intents Usage | CWE-926 | High |
Application Configuration | CWE-16 | High |
Location Information | CWE-200 | High |
Mail Relay | CWE-20 | Low |
Log Forging | CWE-117 | Low |
Trust Boundary Violation | CWE-501 | Low |
Hardcoded Password/Credentials | CWE-798 | Low |
Heap Inspection | CWE-244 | Low |
Error Messages Information Exposure | CWE-209 | Low |
Console Output | CWE-209 | Low |
Weak Encryption Strength | CWE-326 | Low |
Weak Hash Strength | CWE-916 | Low |
Weak Pseudo-Random | CWE-338 | Low |
Miscellaneous Dangerous Functions | CWE-676 | Low |
Copyright © 2024 Mend.io (White Source Ltd.) | All rights reserved.