CX Hardcoded_password_in_Connection_String @ BookDetail_jsp2.java [master]

**Hardcoded_password_in_Connection_String** issue exists @ **BookDetail_jsp2.java** in branch **master**

*The application contains hardcoded connection details, &quot;&quot;&quot;&quot;, at line&nbsp;35 of&nbsp;BookDetail_jsp2.java. This connection string contains a hardcoded password,&nbsp;which is used in cn at line 115 of BookDetail_jsp2.java to connect to a database server with getConnection. This can expose the database password, and impede proper password management.&nbsp;*

Severity: Medium

CWE:547

[Vulnerability details and guidance](https://cwe.mitre.org/data/definitions/547.html)

[Internal Guidance](https://checkmarx.atlassian.net/wiki/spaces/AS/pages/79462432/Remediation+Guidance)

[Checkmarx](http://WIN2K12-TEMP/CxWebClient/ViewerMain.aspx?scanid=1011443&projectid=10180&pathid=40)

[Training](https://cxa.codebashing.com/courses/rewrwerr)
[Recommended Fix](http://WIN2K12-TEMP/CxWebClient/ScanQueryDescription.aspx?queryID=633&queryVersionCode=56556296&queryTitle=Hardcoded_password_in_Connection_String)

Lines: [35](https://github.com/cxflowtestuser/Cx-FlowRepo/blob/master/BookDetail_jsp2.java#L35) 

---
[Code (Line #35):](https://github.com/cxflowtestuser/Cx-FlowRepo/blob/master/BookDetail_jsp2.java#L35)
```
  static final String DBpassword="";
```
---


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX Hardcoded_password_in_Connection_String @ BookDetail_jsp2.java [master] #217

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

CX Hardcoded_password_in_Connection_String @ BookDetail_jsp2.java [master] #217

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions