when we are running my source code with security scan tool then getting LDAP INJECTION.
We tried to fix LDAP INJECTION like "Validated input string (not allowing special characters in input) before calling LDAP"
But still we are getting LDAP INJECTION.
Can any one please help on my LDAP INJECTION issue.
my java code: here I am validating "username" while passing it to LDAP