introduced 2 empty catch block exceptions

Author: dadecarolis-afk

src/main/java/org/dummy/insecure/framework/VulnerableTaskHolder.java

@@ -59,6 +59,13 @@ private void readObject(ObjectInputStream stream) throws Exception {
       throw new IllegalArgumentException("outdated");
     }
 
+    try {
+      // some code that may throw an exception
+      int x = 1 / 0;
+    } catch (ArithmeticException e) {
+      // Empty catch block: this will be detected as a vulnerability
+    }
+
     // condition is here to prevent you from destroying the goat altogether
     if ((taskAction.startsWith("sleep") || taskAction.startsWith("ping"))
         && taskAction.length() < 22) {

src/main/java/org/owasp/webgoat/lessons/sqlinjection/advanced/SqlInjectionChallenge.java

@@ -68,6 +68,12 @@ public AttackResult registerNewUser(
           attackResult =
               informationMessage(this).feedback("user.created").feedbackArgs(username).build();
         }
+        try {
+          // some code that may throw an exception
+          int x = 1 / 0;
+        } catch (ArithmeticException e) {
+          // Empty catch block: this will be detected as a vulnerability
+      }   
       } catch (SQLException e) {
         attackResult = failed(this).output("Something went wrong").build();
       }