Use of a Broken or Risky Cryptographic Algorithm
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-327: Use of a Broken or Risky Cryptographic Algorithm |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Low |
Description#
The code uses the XOR cipher for encryption, which is a weak and outdated algorithm that can be easily broken. Sensitive data protected this way can be quickly decrypted by attackers.
Impact#
If exploited, attackers can easily recover confidential information such as passwords, personal data, or business secrets. This could lead to data breaches, loss of trust, and compliance violations.