Search Results - (java OR jana) code vulnerabilities

Java Source Code Vulnerability Detection Using Large Language Model by Anbiya, Dhika Rizki, Ferdinan, Teddy, Kołaczek, Grzegorz

“…) has shown promising performance compared to static code analysis and machine learning with neural architecture in vulnerability detection…”
Get full text

Comprehensive Evaluation of Static Analysis Tools for Their Performance in Finding Vulnerabilities in Java Code by Alqaradaghi, Midya, Kozsik, Tamas

“…Various static code analysis tools have been designed to automatically detect software faults and security vulnerabilities…”
Get full text

Evaluation of Static Vulnerability Detection Tools With Java Cryptographic API Benchmarks by Afrose, Sharmin, Xiao, Ya, Rahaman, Sazzadur, Miller, Barton P., Yao, Danfeng

“…Several studies showed that misuses of cryptographic APIs are common in real-world code (e.g…”
Get full text

Vulnerability detection in Java source code using a quantum convolutional neural network with self-attentive pooling, deep sequence, and graph-based hybrid feature extraction by Hussain, Shumaila, Nadeem, Muhammad, Baber, Junaid, Hamdi, Mohammed, Rajab, Adel, Al Reshan, Mana Saleh, Shaikh, Asadullah

“… This study presents a novel deep learning-based vulnerability detection system for Java code…”
Get full text

Enhancing Java Web Application Security: Injection Vulnerability Detection via Interprocedural Analysis and Deep Learning by Zhang, Bing, Zhi, Xu, Wang, Meng, Ren, Rong, Dong, Jun

“…Injection attacks exploit vulnerabilities in how applications handle user input, allowing malicious code to infiltrate the execution environment of web applications, leading to severe consequences…”
Get full text

Vulnerability Root Cause Function Locating For Java Vulnerabilities by Zhang, Lyuye

“… Reachability analysis has been increasingly leveraged to streamline vulnerability remediation procedures by prioritizing reachable vulnerabilities, which require the code-level root cause…”
Get full text

Detecting code vulnerabilities with heterogeneous GNN training: Detecting code vulnerabilities with heterogeneous GNN training by Luo, Yu, Xu, Weifeng, Xu, Dianxiang

“…Detecting vulnerabilities in source code is a critical task for software security assurance…”
Get full text

APR4Vul: an empirical study of automatic program repair techniques on real-world Java vulnerabilities by Bui, Quang-Cuong, Paramitha, Ranindya, Vu, Duc-Ly, Massacci, Fabio, Scandariato, Riccardo

“… In particular, we investigate their ability to generate patches for 79 real-world Java vulnerabilities in the Vul4J dataset, as well as the level of trustworthiness of these patches…”
Get full text

Study of JavaScript Static Analysis Tools for Vulnerability Detection in Node.js Packages by Brito, Tiago, Ferreira, Mafalda, Monteiro, Miguel, Lopes, Pedro, Barros, Miguel, Santos, Jose Fragoso, Santos, Nuno

“… In this article, we present the first empirical study of static code analysis tools for detecting vulnerabilities in Node.js code…”
Get full text

Tabby: Automated Gadget Chain Detection for Java Deserialization Vulnerabilities by Chen, Xingchen, Wang, Baizhu, Jin, Ze, Feng, Yun, Li, Xianglong, Feng, Xincheng, Liu, Qixu

“… However, the features may also allow the attackers to construct gadget chains and lead to Java deserialization vulnerabilities…”
Get full text

VulKiller: Java Web Vulnerability Detection with Code Property Graph and Large Language Models by Chen, Xingchen, Wang, Baizhu, Zhang, Mengjun, Cao, Yaqin, Liu, Qixu

“…In recent years, web application development has become more efficient, yet vulnerabilities still pose significant risks…”
Get full text

LiteCobra: Enhancing Java Deserialization Vulnerability Detection with Call Graph Pruning by Zhang, Xiangyu, Yang, Yating, Song, Tian

“…Java deserialization vulnerabilities have become a critical security threat, challenging to detect and even harder to exploit due to deserialization's flexible and customizable nature…”
Get full text

ISVSF: Intelligent Vulnerability Detection Against Java via Sentence-Level Pattern Exploring by Zhang, Haibin, Bi, Yifei, Guo, Hongzhi, Sun, Wen, Li, Jianpeng

“… In addition, it is noticed that most code vulnerability detection methods focused on C/C++, and little work can be found on Java…”
Get full text

Secure coding practices in Java: challenges and vulnerabilities by Meng, Na, Nagy, Stefan, Yao, Danfeng (Daphne), Zhuang, Wenjie, Argoty, Gustavo Arango

“…The Java platform and its third-party libraries provide useful features to facilitate secure coding…”
Get full text

Deep Forest and Pruned Syntax Tree-Based Classification Method for Java Code Vulnerability by Ding, Jiaman, Fu, Weikang, Jia, Lianyin

“…) for Java code vulnerability. First, the breadth-first…”
Get full text

Multi-Granularity Detector for Vulnerability Fixes by Nguyen, Truong Giang, Le-Cong, Thanh, Kang, Hong Jin, Widyasari, Ratnadira, Yang, Chengran, Zhao, Zhipeng, Xu, Bowen, Zhou, Jiayuan, Xia, Xin, Hassan, Ahmed E., Le, Xuan-Bach D., Lo, David

“… Moreover, code changes can be noisy and difficult to analyze. We observe that noise can occur at different levels of detail, making it challenging to detect vulnerability fixes accurately…”
Get full text

A Comparative Study of Static Code Analysis tools for Vulnerability Detection in C/C++ and JAVA Source Code by Kaur, Arvinder, Nayyar, Ruchikaa

“… To ensure software security, one of the major task is to identify vulnerabilities present in the source code before the software is being deployed…”
Get full text

Finetuning Large Language Models for Vulnerability Detection by Shestov, Aleksei, Levichev, Rodion, Mussabayev, Ravil, Maslov, Evgeny, Zadorozhny, Pavel, Cheshkov, Anton, Mussabayev, Rustam, Toleu, Alymzhan, Tolegen, Gulmira, Krassovitskiy, Alexander

“…This paper presents the results of finetuning large language models (LLMs) for the task of detecting vulnerabilities in Java source code…”
Get full text

AndroCom: A Real-World Android Applications’ Vulnerability Dataset to Assist with Automatically Detecting Vulnerabilities by Arikan, Kaya, Yilmaz, Ercan

“… Our research constructs a vulnerability dataset for Android application source code, primarily based on the Common Vulnerabilities and Exposures (CVE…”
Get full text

VulFinder: Exploring Chaincode Vulnerabilities More Effectively and Efficiently Using Knowledge Graph Based Defect Pattern Matching by Li, Bixin, Hu, Tianyuan, Xu, Xiangfei, Wang, Lulu

“… Although there are some vulnerability detection methods for Java and Node.js, there are very few vulnerability detection methods for Go, especially when it is used as a smart contract programming language in Hyperledger Fabric…”
Get full text