CodeAnt AI home pagelight logodark logo
  • Support
  • Dashboard
  • Dashboard
Documentation
API Reference
Start Here
  • What is CodeAnt?
  • Join Community
Setup
  • Github
  • Bitbucket
  • Gitlab
  • Azure Devops
Pull Request Review
  • Features
  • Customize Review
  • Quality Gates
  • Integrations
Scan center
  • Code Security
  • Code Quality
  • Cloud Security
  • Engineering Productivity
Integrations
  • Jira
  • Test Coverage
  • CI/CD
IDE
  • Setup
  • Review
  • Enhancements
Rule Reference
  • Compliance
  • Anti-Patterns
  • Code Governance
  • Infrastructure Security Database
  • Application Security Database
    • Apex
    • Bash
    • C
    • Clojure
    • Cpp
    • Csharp
    • Dockerfile
    • Elixir
    • Fingerprints
    • Generic
    • Go
    • Html
    • Java
    • Javascript
    • Json
    • Kotlin
    • Ocaml
    • Php
      • Doctrine
      • Lang
        • Security
        • Security
          • Audit
          • Injection
          • Search-active-debug
            • Search active debug
          • Search-cookie-secure-false-ini-config
          • Taint-cookie-http-false
          • Taint-cookie-secure-false
          • Taint-unsafe-echo-tag
          • Tainted-code-execution
          • Tainted-command-injection
          • Tainted-curl-injection
          • Tainted-path-traversal
          • Tainted-url-to-connection
          • Tainted-url-to-guzzle-client
          • Tainted-url-to-httpful
          • Tainted-user-input-in-php-script
          • Tainted-user-input-in-script
          • Xml-external-entities-unsafe-entity-loader
          • Xml-external-entities-unsafe-parser-flags
      • Laravel
      • Secrets
      • Symfony
      • Wordpress-plugins
    • Problem-based-packs
    • Python
    • Ruby
    • Rust
    • Scala
    • Solidity
    • Swift
    • Terraform
    • Typescript
    • Yaml
Resources
  • Open Source
  • Blogs
Search-active-debug

Search active debug

search-active-debug

Debug logging is explicitly enabled. This can potentially disclose sensitive information and should never be active on production systems.
Likelihood: LOW
Confidence: HIGH
CWE:
- CWE-489: Active Debug Code
OWASP:
- A05:2021 - Security Misconfiguration
- A06:2017 - Security Misconfiguration
InjectionSearch cookie secure false ini config
twitterlinkedin
Powered by Mintlify
Assistant
Responses are generated using AI and may contain mistakes.