Possible CLRF injection detected
Last updated
Last updated
Rule ID: java_lang_crlf_injection
Applicable Languages: Java
Weakness ID: CWE-93
CRLF (Carriage Return Line Feed) injection vulnerability occurs when an attacker can insert line termination characters into a log message. This can result in forged log entries, compromising the integrity of log files.
Before logging user input data, it is essential to strip any carriage return and line feed characters. This practice prevents attackers from injecting malicious CRLF sequences into the log entries.
To omit this rule during a scan, and to provide you with continuous 24/7 code-level scanning, you can employ our