ABSTRACT

Multiple form-bean entries with the same name exist. Duplicate form-bean names often indicate left over debug code or a typographical error.

EXPLANATION

Duplicate form-bean names serve no purpose since only the last entry will be registered when the same name is used in multiple <form-bean> tags.

Example 1: The following configuration has two form-bean entries with the same name.


<form-beans>
<form-bean name="loginForm" type="org.apache.struts.validator.DynaValidatorForm">
<form-property name="name" type="java.lang.String" />
<form-property name="password" type="java.lang.String" />
</form-bean>
<form-bean name="loginForm" type="org.apache.struts.validator.DynaActionForm">
<form-property name="favoriteColor" type="java.lang.String" />
</form-bean>
</form-beans>

REFERENCES

[1] Apache Struts 1.3 Specification

[2] Standards Mapping - Common Weakness Enumeration - (CWE) CWE ID 694