Skip to content

Vulnerability fix (powered by Mobb Autofixer)#64

Open
eitanMobb wants to merge 34 commits into
masterfrom
Mobb-fix-6b520bd8a8-1
Open

Vulnerability fix (powered by Mobb Autofixer)#64
eitanMobb wants to merge 34 commits into
masterfrom
Mobb-fix-6b520bd8a8-1

Conversation

@eitanMobb

@eitanMobb eitanMobb commented May 21, 2026

Copy link
Copy Markdown
Owner

This change fixes 34 issues reported by Checkmarx.

Log Forging (34)

Issue description

Log Forging allows attackers to manipulate log files by injecting malicious content. This can be used to obfuscate attack traces or forge log entries to conceal unauthorized activities.

Fix instructions

Implement proper input sanitization to remove new lines for values going to the log.

Additional actions required

We use spring-web package in the fix. Please make sure you add the latest spring-web to your pom file.

Additional info and fix customization on Mobb platform

LOG_FORGING fix 1 LOG_FORGING fix 2 LOG_FORGING fix 3 LOG_FORGING fix 4 LOG_FORGING fix 5 LOG_FORGING fix 6 LOG_FORGING fix 7 LOG_FORGING fix 8 LOG_FORGING fix 9 LOG_FORGING fix 10 LOG_FORGING fix 11 LOG_FORGING fix 12 LOG_FORGING fix 13 LOG_FORGING fix 14 LOG_FORGING fix 15 LOG_FORGING fix 16 LOG_FORGING fix 17 LOG_FORGING fix 18 LOG_FORGING fix 19 LOG_FORGING fix 20 LOG_FORGING fix 21 LOG_FORGING fix 22 LOG_FORGING fix 23 LOG_FORGING fix 24 LOG_FORGING fix 25 LOG_FORGING fix 26 LOG_FORGING fix 27 LOG_FORGING fix 28 LOG_FORGING fix 29 LOG_FORGING fix 30 LOG_FORGING fix 31 LOG_FORGING fix 32 LOG_FORGING fix 33 LOG_FORGING fix 34

Mobb autofixer added 30 commits May 21, 2026 17:08
mobb fix commit: 0b9bd7be-35ba-4719-a5b9-c67ba0aeb665
fef33b5
mobb fix commit: 4d81da82-d20f-49c7-8ca9-a5c14b407a0d
0222c1b
mobb fix commit: d74d5310-f042-40c9-becf-cc0ed4a549f9
1b3c415
mobb fix commit: 3de7cb1f-81fd-4e74-a81b-3cdff41b0c2f
b1cd70d
mobb fix commit: 7310fe65-8a20-449a-80fe-cbd492956f13
57b5770
mobb fix commit: 025d4ae4-3a90-422e-ba39-d68879ba71cd
b33a886
mobb fix commit: d5dfb5b6-bf2f-4014-babd-9afcebf2fc3b
4589768
mobb fix commit: d1119305-8f01-44c7-97bb-5db3569e909f
2210483
mobb fix commit: 9b5bb7ca-c207-40b4-b161-59a77ec93b42
e2fcbf9
mobb fix commit: 675e79bd-d39f-4c60-a34c-d790fbf1c2f7
e532d09
mobb fix commit: 1d41033b-1a2a-4736-b73a-95378d408a2e
b4d4654
mobb fix commit: 5c1e9f48-0f42-4f20-9d20-625453ab5500
b1e8d66
mobb fix commit: 5e77c0da-2ec0-4a9d-b0d4-9be955d1a9bb
b27df0e
mobb fix commit: 03252d6d-a52c-4a8c-ae91-4391dc3f5bba
04b0ecd
mobb fix commit: 1bc26fe9-1b1b-44d3-aff4-5b6583a35d2e
1855e87
mobb fix commit: c0173fb5-eaf0-45ee-a01e-c0ae74e701d3
54f2235
mobb fix commit: 76578cb3-070e-49f8-8057-63f2fdcf625a
21a7460
mobb fix commit: 0b1a86b4-9656-455e-b4cf-72cd1b6470da
fc7b522
mobb fix commit: cf9362aa-d6b5-4cdf-b23d-66ac3ee9e14e
83d26e7
mobb fix commit: 542cb508-a20a-485c-ab93-0fa5ed95e528
c2d97a8
mobb fix commit: 3d136bc4-cbf2-48a0-98e7-8e20c71579a8
e288439
mobb fix commit: 4c8ee120-57d4-4cf5-8c98-6a60e96c6f2a
b5f6f87
mobb fix commit: 933cb322-1ac4-48a8-8d8d-6492e94236e5
e65e3e5
mobb fix commit: 021771c5-9074-45d7-bcce-6f3720281cfc
e8b1ab1
mobb fix commit: a5f07c80-170b-49d7-97d8-eef40e177419
9c4130f
mobb fix commit: 404e10a2-1308-46a5-8796-49e2045165cc
6e8cd70
mobb fix commit: 7c4a0b0c-5bf5-4151-be1b-e256baa34b21
f7ec87a
mobb fix commit: d994f32a-c334-40dc-8fa5-b975e6b01d2d
2f36cc9
mobb fix commit: cbeb4453-e60e-4c04-920b-6b678c133e23
64abd9f
mobb fix commit: 3890b8c3-62a4-45c9-8dbb-994192a16faf
b1f5cee
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@eitanMobb