Selenium Code Review

ISGroup SRL performed an automated Code Review (not a real Static Analysis, more a grep-on-steroid) of this NodeJS project in order to identify potential security vulnerabilities. We do not guarantee that all the findings are valid, and for sure there are plenty of false-positives and false-negatives (undetected issues) but it's free and your project could benefit from this security analisys. The following data is also available in JSON format!

Possible Security Issues

Issue	Description	Line	File
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3080	common/src/web/jquery-1.3.2.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3620	common/src/web/jquery-1.3.2.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3624	common/src/web/jquery-1.3.2.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4053	common/src/web/jquery-1.3.2.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	22	common/src/web/js/jquery-1.4.4.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	29	common/src/web/js/jquery-1.4.4.min.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	31	common/src/web/js/jquery-1.4.4.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	47	common/src/web/js/jquery-1.4.4.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	141	common/src/web/js/jquery-1.4.4.min.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	153	common/src/web/js/jquery-1.4.4.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2	common/src/web/js/tinymce.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3	common/src/web/js/tinymce.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	5	common/src/web/js/tinymce.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	8	common/src/web/js/tinymce.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	9	common/src/web/js/tinymce.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	10	common/src/web/js/tinymce.min.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	10	common/src/web/js/tinymce.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	11	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	46	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	265	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	316	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	317	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	318	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	319	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	345	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	394	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	464	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	482	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	506	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	512	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	664	common/src/web/js/jquery-ui-1.8.10.custom.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	77	ide/main/src/content/recorder.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	180	ide/main/src/content/plugin.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	214	ide/main/src/content/editor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	663	ide/main/src/content/editor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	670	ide/main/src/content/editor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	861	ide/main/src/content/editor.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1246	ide/main/src/content/editor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	211	ide/main/src/content/recorder-handlers.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	25	ide/main/src/content/webdriver-backed-selenium.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	87	ide/main/src/content/webdriver-backed-selenium.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	244	ide/main/src/content/selenium-ide-overlay.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	86	ide/main/src/content/selenium-runner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	561	ide/main/src/content/selenium-runner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	565	ide/main/src/content/selenium-runner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	116	ide/main/src/content/optionsDialog.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	194	ide/main/src/content/optionsDialog.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	33	ide/main/src/content/selenium-core/scripts/selenium-testrunner-original.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	57	ide/main/src/content/selenium-core/scripts/selenium-testrunner-original.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	69	ide/main/src/content/selenium-core/scripts/selenium-testrunner-original.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1219	ide/main/src/content/selenium-core/scripts/selenium-testrunner-original.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	111	ide/main/src/content/formats/html.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	130	ide/main/src/content/formats/html.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	243	ide/main/src/content/formats/html.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	77	ide/main/src/content/scheduler/scheduler-selenium.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	199	ide/main/src/content/scheduler/scheduler-selenium.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	452	ide/main/src/content/scheduler/schedule.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	782	third_party/closure/third_party/closure/goog/mochikit/async/deferred.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	874	third_party/closure/third_party/closure/goog/mochikit/async/deferred.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1127	third_party/closure/goog/base.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1944	third_party/closure/goog/base.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1958	third_party/closure/goog/base.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2359	third_party/closure/goog/base.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	48	third_party/closure/goog/dom/animationframe/polyfill.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	305	third_party/closure/goog/testing/continuationtestcase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	325	third_party/closure/goog/testing/continuationtestcase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	430	third_party/closure/goog/testing/continuationtestcase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	669	third_party/closure/goog/testing/continuationtestcase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	96	third_party/closure/goog/testing/parallel_closure_test_suite.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	76	third_party/closure/goog/testing/asynctestcase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	82	third_party/closure/goog/testing/asynctestcase.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	32	third_party/closure/goog/ui/abstractspellchecker.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	302	third_party/closure/goog/ui/dragdropdetector.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	497	third_party/closure/goog/ui/dragdropdetector.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	770	third_party/closure/goog/ui/ac/inputhandler.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1032	third_party/closure/goog/ui/ac/inputhandler.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	703	third_party/closure/goog/ui/ac/autocomplete.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	735	third_party/closure/goog/ui/ac/autocomplete.js
Key Hardcoded	A hardcoded key in plain text was identified.	156	third_party/closure/goog/ui/media/picasa.js
Key Hardcoded	A hardcoded key in plain text was identified.	221	third_party/closure/goog/ui/media/picasa.js
Key Hardcoded	A hardcoded key in plain text was identified.	896	third_party/closure/goog/uri/utils.js
Key Hardcoded	A hardcoded key in plain text was identified.	928	third_party/closure/goog/uri/utils.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	514	third_party/closure/goog/editor/seamlessfield.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	601	third_party/closure/goog/editor/seamlessfield.js
Key Hardcoded	A hardcoded key in plain text was identified.	1411	third_party/closure/goog/editor/field.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	243	third_party/closure/goog/editor/clicktoeditwrapper.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	179	third_party/closure/goog/datasource/jsxmlhttpdatasource.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	189	third_party/closure/goog/datasource/jsxmlhttpdatasource.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	934	third_party/closure/goog/history/history.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	41	third_party/closure/goog/async/nexttick.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	47	third_party/closure/goog/async/nexttick.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	48	third_party/closure/goog/async/nexttick.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	52	third_party/closure/goog/async/nexttick.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	240	third_party/closure/goog/async/nexttick.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	151	third_party/closure/goog/async/animationdelay.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	215	third_party/closure/goog/window/window.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	200	third_party/closure/goog/module/loader.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	476	third_party/closure/goog/module/modulemanager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	707	third_party/closure/goog/module/modulemanager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	910	third_party/closure/goog/module/modulemanager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	288	third_party/closure/goog/module/moduleinfo.js
Key Hardcoded	A hardcoded key in plain text was identified.	194	third_party/closure/goog/graphics/svggraphics.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1252	third_party/closure/goog/promise/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	171	third_party/closure/goog/net/jsloader.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	348	third_party/closure/goog/net/jsloader.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	493	third_party/closure/goog/net/crossdomainrpc.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	243	third_party/closure/goog/net/browsertestchannel.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	83	third_party/closure/goog/net/iframeloadmonitor.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	125	third_party/closure/goog/net/channelrequest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1011	third_party/closure/goog/net/channelrequest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1044	third_party/closure/goog/net/channelrequest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1129	third_party/closure/goog/net/channelrequest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	95	third_party/closure/goog/net/tmpnetwork.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	151	third_party/closure/goog/net/tmpnetwork.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1329	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1370	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1398	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1530	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1632	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1657	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1850	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2409	third_party/closure/goog/net/browserchannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	347	third_party/closure/goog/net/xpc/nixtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	405	third_party/closure/goog/net/xpc/nixtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	456	third_party/closure/goog/net/xpc/nixtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	481	third_party/closure/goog/net/xpc/crosspagechannel.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	181	third_party/closure/goog/net/xpc/frameelementmethodtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	219	third_party/closure/goog/net/xpc/frameelementmethodtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	458	third_party/closure/goog/net/xpc/iframepollingtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	516	third_party/closure/goog/net/xpc/iframepollingtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	527	third_party/closure/goog/net/xpc/iframepollingtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	838	third_party/closure/goog/net/xpc/iframepollingtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	862	third_party/closure/goog/net/xpc/iframepollingtransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	128	third_party/closure/goog/net/xpc/iframerelaytransport.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	155	third_party/closure/goog/net/xpc/iframerelaytransport.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	67	third_party/closure/goog/bootstrap/nodejs.js
Key Hardcoded	A hardcoded key in plain text was identified.	53	third_party/closure/goog/storage/richstorage.js
Key Hardcoded	A hardcoded key in plain text was identified.	85	third_party/closure/goog/storage/encryptedstorage.js
Key Hardcoded	A hardcoded key in plain text was identified.	47	third_party/closure/goog/storage/expiringstorage.js
Key Hardcoded	A hardcoded key in plain text was identified.	56	third_party/closure/goog/storage/expiringstorage.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	78	third_party/closure/goog/structs/prioritypool.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	104	third_party/closure/goog/structs/prioritypool.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	105	third_party/closure/goog/json/json.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	125	third_party/closure/goog/json/json.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	37	third_party/closure/goog/json/evaljsonprocessor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	403	third_party/closure/goog/functions/functions.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	444	third_party/closure/goog/functions/functions.js
Key Hardcoded	A hardcoded key in plain text was identified.	54	third_party/closure/goog/style/style.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	105	third_party/closure/goog/debug/debugwindow.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	375	third_party/closure/goog/debug/debugwindow.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	171	third_party/closure/goog/timer/timer.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	187	third_party/closure/goog/timer/timer.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	222	third_party/closure/goog/timer/timer.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	287	third_party/closure/goog/timer/timer.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	345	third_party/closure/goog/labs/net/xhr.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	93	third_party/closure/goog/labs/net/webchannel/netutils.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	125	third_party/closure/goog/labs/net/webchannel/netutils.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	125	third_party/closure/goog/labs/net/webchannel/wirev8.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	126	third_party/closure/goog/labs/net/webchannel/wirev8.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	372	third_party/closure/goog/labs/net/webchannel/requeststats.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	109	third_party/closure/goog/labs/net/webchannel/channelrequest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	853	third_party/closure/goog/labs/net/webchannel/channelrequest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	932	third_party/closure/goog/labs/net/webchannel/webchannelbase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	959	third_party/closure/goog/labs/net/webchannel/webchannelbase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1083	third_party/closure/goog/labs/net/webchannel/webchannelbase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1156	third_party/closure/goog/labs/net/webchannel/webchannelbase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1181	third_party/closure/goog/labs/net/webchannel/webchannelbase.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1349	third_party/closure/goog/labs/net/webchannel/webchannelbase.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	95	javascript/remote/ui/sessioncontainer.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	297	javascript/selenium-core/scripts/selenium-remoterunner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	310	javascript/selenium-core/scripts/selenium-remoterunner.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	320	javascript/selenium-core/scripts/selenium-remoterunner.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	322	javascript/selenium-core/scripts/selenium-remoterunner.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	333	javascript/selenium-core/scripts/selenium-remoterunner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1291	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1636	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2034	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2043	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2070	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2075	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2600	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2674	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2926	javascript/selenium-core/scripts/selenium-api.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	73	javascript/selenium-core/scripts/selenium-logging.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	33	javascript/selenium-core/scripts/selenium-testrunner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	59	javascript/selenium-core/scripts/selenium-testrunner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	66	javascript/selenium-core/scripts/selenium-testrunner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	76	javascript/selenium-core/scripts/selenium-testrunner.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1303	javascript/selenium-core/scripts/selenium-testrunner.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	214	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	395	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	533	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	554	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	806	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	812	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1072	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1093	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1629	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1861	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2030	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2592	javascript/selenium-core/scripts/selenium-browserbot.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	806	javascript/selenium-core/scripts/htmlutils.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2980	javascript/selenium-core/scripts/htmlutils.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3109	javascript/selenium-core/scripts/htmlutils.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3363	javascript/selenium-core/scripts/htmlutils.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3784	javascript/selenium-core/scripts/htmlutils.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	7683	javascript/selenium-core/scripts/htmlutils.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	8210	javascript/selenium-core/scripts/htmlutils.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	68	javascript/selenium-core/scripts/selenium-executionloop.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	158	javascript/selenium-core/scripts/selenium-executionloop.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	145	javascript/selenium-core/test/RemoteRunnerTest.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	149	javascript/selenium-core/test/RemoteRunnerTest.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	459	javascript/selenium-core/xpath/util.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	44	javascript/selenium-core/xpath/javascript-xpath-0.1.12.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	105	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	179	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	684	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	735	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	741	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	822	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	861	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	952	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	965	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1164	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1342	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1581	javascript/selenium-core/lib/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	93	javascript/selenium-core/lib/scriptaculous/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	152	javascript/selenium-core/lib/scriptaculous/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	180	javascript/selenium-core/lib/scriptaculous/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	449	javascript/selenium-core/lib/scriptaculous/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	808	javascript/selenium-core/lib/scriptaculous/controls.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	228	javascript/selenium-core/lib/scriptaculous/effects.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	168	javascript/selenium-core/lib/scriptaculous/unittest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	213	javascript/selenium-core/lib/scriptaculous/unittest.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	447	javascript/selenium-core/lib/scriptaculous/dragdrop.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	6	javascript/selenium-core/lib/cssQuery/cssQuery-p.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	18	javascript/selenium-core/lib/cssQuery/src/cssQuery-standard.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	83	javascript/selenium-core/lib/cssQuery/src/cssQuery.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	89	javascript/selenium-core/lib/cssQuery/src/cssQuery.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	90	javascript/selenium-core/lib/cssQuery/src/cssQuery-level2.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	159	javascript/node/deploy.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	405	javascript/node/selenium-webdriver/safari.js
Key Hardcoded	A hardcoded key in plain text was identified.	454	javascript/node/selenium-webdriver/safari.js
Key Hardcoded	A hardcoded key in plain text was identified.	189	javascript/node/selenium-webdriver/opera.js
Key Hardcoded	A hardcoded key in plain text was identified.	291	javascript/node/selenium-webdriver/chrome.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	89	javascript/node/selenium-webdriver/http/util.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	124	javascript/node/selenium-webdriver/http/util.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	230	javascript/node/selenium-webdriver/http/index.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	337	javascript/node/selenium-webdriver/test/execute_script_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	115	javascript/node/selenium-webdriver/test/http/util_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	136	javascript/node/selenium-webdriver/test/http/util_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	145	javascript/node/selenium-webdriver/test/http/util_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	179	javascript/node/selenium-webdriver/test/http/util_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	129	javascript/node/selenium-webdriver/test/testing/index_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	140	javascript/node/selenium-webdriver/test/testing/index_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	150	javascript/node/selenium-webdriver/test/testing/index_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	182	javascript/node/selenium-webdriver/test/testing/assert_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	209	javascript/node/selenium-webdriver/test/testing/assert_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	227	javascript/node/selenium-webdriver/test/testing/assert_test.js
Weak Hash used - SHA1	SHA1 is a a weak hash which is known to have collision. Use a strong hashing function.	49	javascript/node/selenium-webdriver/test/firefox/extension_test.js
Weak Hash used - SHA1	SHA1 is a a weak hash which is known to have collision. Use a strong hashing function.	53	javascript/node/selenium-webdriver/test/firefox/extension_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	862	javascript/node/selenium-webdriver/test/lib/promise_error_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	88	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	211	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	281	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	296	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1071	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1089	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1199	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1431	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1880	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1892	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1907	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2278	javascript/node/selenium-webdriver/test/lib/promise_flow_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	250	javascript/node/selenium-webdriver/test/lib/promise_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	567	javascript/node/selenium-webdriver/test/lib/promise_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	608	javascript/node/selenium-webdriver/test/lib/promise_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	664	javascript/node/selenium-webdriver/test/lib/promise_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	49	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	134	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	169	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	174	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	244	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	248	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	268	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	272	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	291	javascript/node/selenium-webdriver/test/lib/promise_generator_test.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	823	javascript/node/selenium-webdriver/test/lib/webdriver_test.js
Remote OS Command Execution	User controlled data in 'child_process.exec()' can result in Remote OS Command Execution.	20	javascript/node/selenium-webdriver/net/portprober.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	604	javascript/node/selenium-webdriver/lib/webdriver.js
Key Hardcoded	A hardcoded key in plain text was identified.	1690	javascript/node/selenium-webdriver/lib/webdriver.js
Key Hardcoded	A hardcoded key in plain text was identified.	1691	javascript/node/selenium-webdriver/lib/webdriver.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	64	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	73	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	77	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	199	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	369	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	370	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	653	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1425	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2062	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2140	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2189	javascript/node/selenium-webdriver/lib/promise.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	179	javascript/node/selenium-webdriver/lib/test/fileserver.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	43	javascript/node/selenium-webdriver/lib/test/httpserver.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	63	javascript/jsunit/app/jsUnitMockTimeout.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	69	javascript/jsunit/app/jsUnitMockTimeout.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	49	javascript/jsunit/app/jsUnitTracer.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	145	javascript/jsunit/app/xbDebug.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	151	javascript/jsunit/app/xbDebug.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	177	javascript/jsunit/app/xbDebug.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	186	javascript/jsunit/app/xbDebug.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	277	javascript/jsunit/app/xbDebug.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	81	javascript/jsunit/app/jsUnitTestManager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	139	javascript/jsunit/app/jsUnitTestManager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	154	javascript/jsunit/app/jsUnitTestManager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	166	javascript/jsunit/app/jsUnitTestManager.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	231	javascript/jsunit/app/jsUnitTestManager.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	241	javascript/jsunit/app/jsUnitTestManager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	326	javascript/jsunit/app/jsUnitTestManager.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	54	javascript/safari-driver/client.js
Key Hardcoded	A hardcoded key in plain text was identified.	71	javascript/atoms/inject.js
Key Hardcoded	A hardcoded key in plain text was identified.	79	javascript/atoms/inject.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	365	javascript/atoms/inject.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	16	javascript/atoms/test/jquery.min.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	16	javascript/atoms/test/jquery.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	18	javascript/atoms/test/jquery.min.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	18	javascript/atoms/test/jquery.min.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	196	javascript/firefox-driver/js/nsCommandProcessor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	328	javascript/firefox-driver/js/nsCommandProcessor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	522	javascript/firefox-driver/js/nsCommandProcessor.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	581	javascript/firefox-driver/js/nsCommandProcessor.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	69	javascript/firefox-driver/js/evaluate.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	74	javascript/firefox-driver/js/evaluate.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	84	javascript/firefox-driver/js/timer.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	456	javascript/firefox-driver/js/wdsession.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	242	javascript/firefox-driver/js/webLoadingListener.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	167	javascript/firefox-driver/js/firefoxDriver.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	476	javascript/firefox-driver/js/firefoxDriver.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	556	javascript/firefox-driver/js/firefoxDriver.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	152	javascript/firefox-driver/js/wrappedElement.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1031	javascript/firefox-driver/js/utils.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	100	javascript/selenium-atoms/inject.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	99	javascript/selenium-atoms/locator_strategies.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	8	java/client/src/com/thoughtworks/selenium/webdriven/htmlutils.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	15	java/server/test/org/openqa/selenium/tests/filter-tests-for-browser.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	93	java/server/test/org/openqa/selenium/tests/html/ajax/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	152	java/server/test/org/openqa/selenium/tests/html/ajax/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	180	java/server/test/org/openqa/selenium/tests/html/ajax/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	449	java/server/test/org/openqa/selenium/tests/html/ajax/controls.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	808	java/server/test/org/openqa/selenium/tests/html/ajax/controls.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	228	java/server/test/org/openqa/selenium/tests/html/ajax/effects.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	168	java/server/test/org/openqa/selenium/tests/html/ajax/unittest.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	213	java/server/test/org/openqa/selenium/tests/html/ajax/unittest.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	447	java/server/test/org/openqa/selenium/tests/html/ajax/dragdrop.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	105	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	179	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	684	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	735	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	741	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	822	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	861	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	952	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	965	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1164	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - new Function()	User controlled data in 'new Function()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1342	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1581	java/server/test/org/openqa/selenium/tests/html/ajax/prototype.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	105	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	106	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	212	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	291	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	583	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	720	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	833	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	842	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1219	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1390	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1750	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2306	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2313	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2351	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2667	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2677	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2720	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2767	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3424	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4279	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4360	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4402	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4471	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	142	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	196	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	197	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	200	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	201	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	203	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	469	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	572	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1085	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1248	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1405	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1420	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1956	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2078	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2359	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	2857	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3746	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3759	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	3801	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4158	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4166	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4213	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	4264	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	5253	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	6564	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	6668	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	6725	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	6820	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/dojo.js.uncompressed.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	65	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/json.js
Key Hardcoded	A hardcoded key in plain text was identified.	140	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/json.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	131	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/browser_debug.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	135	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/browser_debug.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	139	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/browser_debug.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	897	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/flash.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1022	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/flash.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	1024	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/flash.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	133	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/loader.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	236	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/loader.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	29	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_browser.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	192	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_browser.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	349	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_browser.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	364	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_browser.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	133	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/loader_xd.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	164	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/loader_xd.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	167	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/loader_xd.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	57	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_rhino.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	225	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_rhino.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	140	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/bootstrap1.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	194	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/bootstrap1.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	195	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/bootstrap1.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	198	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/bootstrap1.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	199	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/bootstrap1.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	201	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/bootstrap1.js
Username Hardcoded	A hardcoded username in plain text was identified. Store it properly in a config file.	51	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_dashboard.js
Password Hardcoded	A hardcoded password in plain text was identified. Store it properly in a config file.	52	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_dashboard.js
Key Hardcoded	A hardcoded key in plain text was identified.	115	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/storage.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	341	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/storage.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	46	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_jsc.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	120	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_adobesvg.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	159	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_adobesvg.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	233	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_adobesvg.js
Server Side Injection(SSI) - eval()	User controlled data in eval() can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	294	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_adobesvg.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	448	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/hostenv_adobesvg.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	40	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/lang/extras.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	143	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/lang/func.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	70	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/lang/timing/Streamer.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	39	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/lang/timing/Timer.js
Server Side Injection(SSI) - setInterval()	User controlled data in 'setInterval()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	52	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/lang/timing/Timer.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	281	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/dnd/HtmlDragAndDrop.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	300	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/dnd/HtmlDragAndDrop.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	202	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/dnd/TreeDragAndDrop.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	62	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/dnd/HtmlDragCopy.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	167	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/dnd/TreeDragAndDropV3.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	68	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/html/iframe.js
Server Side Injection(SSI) - setTimeout()	User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).	660	java/server/test/org/openqa/selenium/tests/html/dojo-0.4.0-mini/src/event/common.js

Issue	Description
Missing Security Header - X-Frame-Options (XFO)	X-Frame-Options (XFO) header provides protection against Clickjacking attacks.
Missing Security Header - Content-Security-Policy (CSP)	Content Security Policy (CSP), a mechanism web applications can use to mitigate a broad class of content injection vulnerabilities, such as cross-site scripting (XSS). CSP Header was not found.
Missing Security Header - Strict-Transport-Security (HSTS)	Strict-Transport-Security (HSTS) header enforces secure (HTTP over SSL/TLS) connections to the server.
Infromation Disclosure - X-Powered-By	Remove the X-Powered-By header to prevent information gathering.
Missing Security Header - X-Content-Type-Options	X-Content-Type-Options header prevents Internet Explorer and Google Chrome from MIME-sniffing a response away from the declared content-type.
Missing Security Header - X-Download-Options: noopen	X-Download-Options header set to noopen prevents IE users from directly opening and executing downloads in your site's context.
Missing Security Header - X-XSS-Protection:1	X-XSS-Protection header set to 1 enables the Cross-site scripting (XSS) filter built into most recent web browsers.
Missing Security Header - Public-Key-Pins (HPKP)	Public-Key-Pins (HPKP) ensures that certificate is Pinned.

Node.Security

Security Audit of Selenium