get a few more queries in sync with other languages

2025-12-24 04:36:35 +01:00 · 2022-10-01 11:17:48 +02:00
parent acfcc4bfe2
commit 129cda00db
9 changed files with 86 additions and 86 deletions
--- a/Bugs/Nullness/NullAlways.ql
+++ b/Bugs/Nullness/NullAlways.ql
@@ -17,5 +17,5 @@ private import semmle.code.java.dataflow.Nullness
 from VarAccess access, SsaSourceVariable var
 where alwaysNullDeref(var, access)
-select access, "Variable $@ is always null at this access.", var.getVariable(),
+select access, "Variable $@ is always null at this dereference.", var.getVariable(),
  var.getVariable().getName()
--- a/java/ql/src/Security/CWE/CWE-078/ExecTainted.ql
+++ b/java/ql/src/Security/CWE/CWE-078/ExecTainted.ql
@@ -20,5 +20,5 @@ import DataFlow::PathGraph
 from DataFlow::PathNode source, DataFlow::PathNode sink, ArgumentToExec execArg
 where execTainted(source, sink, execArg)
-select execArg, source, sink, "Command line depends on a $@.", source.getNode(),
+select execArg, source, sink, "This command line depends on a $@.", source.getNode(),
  "user-provided value"
--- a/java/ql/src/Security/CWE/CWE-078/ExecTaintedLocal.ql
+++ b/java/ql/src/Security/CWE/CWE-078/ExecTaintedLocal.ql
@@ -38,5 +38,5 @@ from
  DataFlow::PathNode source, DataFlow::PathNode sink, ArgumentToExec execArg,
  LocalUserInputToArgumentToExecFlowConfig conf
 where conf.hasFlowPath(source, sink) and sink.getNode().asExpr() = execArg
-select execArg, source, sink, "Command line depends on a $@.", source.getNode(),
+select execArg, source, sink, "This command line depends on a $@.", source.getNode(),
  "user-provided value"
--- a/java/ql/src/Security/CWE/CWE-090/LdapInjection.ql
+++ b/java/ql/src/Security/CWE/CWE-090/LdapInjection.ql
@@ -18,5 +18,5 @@ import DataFlow::PathGraph
 from DataFlow::PathNode source, DataFlow::PathNode sink, LdapInjectionFlowConfig conf
 where conf.hasFlowPath(source, sink)
-select sink.getNode(), source, sink, "LDAP query depends on a $@.", source.getNode(),
+select sink.getNode(), source, sink, "This LDAP query depends on a $@.", source.getNode(),
  "user-provided value"
--- a/java/ql/src/experimental/Security/CWE/CWE-078/ExecTainted.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-078/ExecTainted.ql
@@ -21,5 +21,5 @@ import DataFlow::PathGraph
 // This is a clone of query `java/command-line-injection` that also includes experimental sinks.
 from DataFlow::PathNode source, DataFlow::PathNode sink, ArgumentToExec execArg
 where execTainted(source, sink, execArg)
-select execArg, source, sink, "Command line depends on a $@.", source.getNode(),
+select execArg, source, sink, "This command line depends on a $@.", source.getNode(),
  "user-provided value"
--- a/java/ql/test/experimental/query-tests/security/CWE-078/ExecTainted.expected
+++ b/java/ql/test/experimental/query-tests/security/CWE-078/ExecTainted.expected
@@ -8,5 +8,5 @@ nodes
 | JSchOSInjectionTest.java:53:36:53:52 | ... + ... | semmle.label | ... + ... |
 subpaths
 #select
-| JSchOSInjectionTest.java:27:52:27:68 | ... + ... | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) : String | JSchOSInjectionTest.java:27:52:27:68 | ... + ... | Command line depends on a $@. | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) | user-provided value |
+| JSchOSInjectionTest.java:27:52:27:68 | ... + ... | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) : String | JSchOSInjectionTest.java:27:52:27:68 | ... + ... | This command line depends on a $@. | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) | user-provided value |
-| JSchOSInjectionTest.java:53:36:53:52 | ... + ... | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) : String | JSchOSInjectionTest.java:53:36:53:52 | ... + ... | Command line depends on a $@. | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) | user-provided value |
+| JSchOSInjectionTest.java:53:36:53:52 | ... + ... | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) : String | JSchOSInjectionTest.java:53:36:53:52 | ... + ... | This command line depends on a $@. | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) | user-provided value |
--- a/java/ql/test/query-tests/Nullness/NullAlways.expected
+++ b/java/ql/test/query-tests/Nullness/NullAlways.expected
@@ -1,16 +1,16 @@
-| A.java:15:7:15:9 | not | Variable $@ is always null at this access. | A.java:13:5:13:22 | Object not | not |
+| A.java:15:7:15:9 | not | Variable $@ is always null at this dereference. | A.java:13:5:13:22 | Object not | not |
-| A.java:97:18:97:36 | synchronized_always | Variable $@ is always null at this access. | A.java:96:5:96:38 | Object synchronized_always | synchronized_always |
+| A.java:97:18:97:36 | synchronized_always | Variable $@ is always null at this dereference. | A.java:96:5:96:38 | Object synchronized_always | synchronized_always |
-| A.java:161:26:161:34 | do_always | Variable $@ is always null at this access. | A.java:159:5:159:28 | String do_always | do_always |
+| A.java:161:26:161:34 | do_always | Variable $@ is always null at this dereference. | A.java:159:5:159:28 | String do_always | do_always |
-| A.java:167:26:167:34 | do_maybe1 | Variable $@ is always null at this access. | A.java:165:5:165:28 | String do_maybe1 | do_maybe1 |
+| A.java:167:26:167:34 | do_maybe1 | Variable $@ is always null at this dereference. | A.java:165:5:165:28 | String do_maybe1 | do_maybe1 |
-| A.java:187:26:187:37 | while_always | Variable $@ is always null at this access. | A.java:185:5:185:31 | String while_always | while_always |
+| A.java:187:26:187:37 | while_always | Variable $@ is always null at this dereference. | A.java:185:5:185:31 | String while_always | while_always |
-| A.java:207:26:207:34 | if_always | Variable $@ is always null at this access. | A.java:205:5:205:28 | String if_always | if_always |
+| A.java:207:26:207:34 | if_always | Variable $@ is always null at this dereference. | A.java:205:5:205:28 | String if_always | if_always |
-| A.java:223:24:223:29 | for_ok | Variable $@ is always null at this access. | A.java:219:5:219:19 | String for_ok | for_ok |
+| A.java:223:24:223:29 | for_ok | Variable $@ is always null at this dereference. | A.java:219:5:219:19 | String for_ok | for_ok |
-| A.java:226:26:226:35 | for_always | Variable $@ is always null at this access. | A.java:225:10:225:33 | String for_always | for_always |
+| A.java:226:26:226:35 | for_always | Variable $@ is always null at this dereference. | A.java:225:10:225:33 | String for_always | for_always |
-| A.java:236:5:236:14 | array_null | Variable $@ is always null at this access. | A.java:235:5:235:28 | int[] array_null | array_null |
+| A.java:236:5:236:14 | array_null | Variable $@ is always null at this dereference. | A.java:235:5:235:28 | int[] array_null | array_null |
-| A.java:248:24:248:34 | arrayaccess | Variable $@ is always null at this access. | A.java:244:5:244:29 | int[] arrayaccess | arrayaccess |
+| A.java:248:24:248:34 | arrayaccess | Variable $@ is always null at this dereference. | A.java:244:5:244:29 | int[] arrayaccess | arrayaccess |
-| A.java:249:24:249:34 | fieldaccess | Variable $@ is always null at this access. | A.java:245:5:245:32 | String[] fieldaccess | fieldaccess |
+| A.java:249:24:249:34 | fieldaccess | Variable $@ is always null at this dereference. | A.java:245:5:245:32 | String[] fieldaccess | fieldaccess |
-| A.java:250:24:250:35 | methodaccess | Variable $@ is always null at this access. | A.java:246:5:246:31 | Object methodaccess | methodaccess |
+| A.java:250:24:250:35 | methodaccess | Variable $@ is always null at this dereference. | A.java:246:5:246:31 | Object methodaccess | methodaccess |
-| A.java:264:21:264:30 | for_always | Variable $@ is always null at this access. | A.java:263:5:263:35 | List<String> for_always | for_always |
+| A.java:264:21:264:30 | for_always | Variable $@ is always null at this dereference. | A.java:263:5:263:35 | List<String> for_always | for_always |
-| A.java:266:24:266:33 | for_always | Variable $@ is always null at this access. | A.java:263:5:263:35 | List<String> for_always | for_always |
+| A.java:266:24:266:33 | for_always | Variable $@ is always null at this dereference. | A.java:263:5:263:35 | List<String> for_always | for_always |
-| A.java:293:5:293:5 | s | Variable $@ is always null at this access. | A.java:291:5:291:33 | Object s | s |
+| A.java:293:5:293:5 | s | Variable $@ is always null at this dereference. | A.java:291:5:291:33 | Object s | s |
-| B.java:304:7:304:9 | ioe | Variable $@ is always null at this access. | B.java:297:5:297:25 | Exception ioe | ioe |
+| B.java:304:7:304:9 | ioe | Variable $@ is always null at this dereference. | B.java:297:5:297:25 | Exception ioe | ioe |
--- a/java/ql/test/query-tests/security/CWE-078/ExecTaintedLocal.expected
+++ b/java/ql/test/query-tests/security/CWE-078/ExecTaintedLocal.expected
@@ -33,8 +33,8 @@ nodes
 | Test.java:61:23:61:25 | arg : String | semmle.label | arg : String |
 subpaths
 #select
-| Test.java:7:44:7:69 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:7:44:7:69 | ... + ... | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:7:44:7:69 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:7:44:7:69 | ... + ... | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:10:29:10:74 | new String[] | Test.java:57:27:57:39 | args : String[] | Test.java:10:29:10:74 | new String[] | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:10:29:10:74 | new String[] | Test.java:57:27:57:39 | args : String[] | Test.java:10:29:10:74 | new String[] | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:18:29:18:31 | cmd | Test.java:57:27:57:39 | args : String[] | Test.java:18:29:18:31 | cmd | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:18:29:18:31 | cmd | Test.java:57:27:57:39 | args : String[] | Test.java:18:29:18:31 | cmd | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:24:29:24:32 | cmd1 | Test.java:57:27:57:39 | args : String[] | Test.java:24:29:24:32 | cmd1 | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:24:29:24:32 | cmd1 | Test.java:57:27:57:39 | args : String[] | Test.java:24:29:24:32 | cmd1 | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:29:44:29:64 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:29:44:29:64 | ... + ... | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:29:44:29:64 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:29:44:29:64 | ... + ... | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
--- a/java/ql/test/query-tests/security/CWE-090/LdapInjection.expected
+++ b/java/ql/test/query-tests/security/CWE-090/LdapInjection.expected
@@ -176,61 +176,61 @@ nodes
 | LdapInjection.java:346:14:346:24 | getBase(...) | semmle.label | getBase(...) |
 subpaths
 #select
-| LdapInjection.java:47:16:47:35 | ... + ... | LdapInjection.java:45:55:45:81 | jBadDN : String | LdapInjection.java:47:16:47:35 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:45:55:45:81 | jBadDN | user-provided value |
+| LdapInjection.java:47:16:47:35 | ... + ... | LdapInjection.java:45:55:45:81 | jBadDN : String | LdapInjection.java:47:16:47:35 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:45:55:45:81 | jBadDN | user-provided value |
-| LdapInjection.java:47:38:47:57 | ... + ... | LdapInjection.java:45:28:45:52 | jBad : String | LdapInjection.java:47:38:47:57 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:45:28:45:52 | jBad | user-provided value |
+| LdapInjection.java:47:38:47:57 | ... + ... | LdapInjection.java:45:28:45:52 | jBad : String | LdapInjection.java:47:38:47:57 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:45:28:45:52 | jBad | user-provided value |
-| LdapInjection.java:53:16:53:53 | new LdapName(...) | LdapInjection.java:51:55:51:85 | jBadDNName : String | LdapInjection.java:53:16:53:53 | new LdapName(...) | LDAP query depends on a $@. | LdapInjection.java:51:55:51:85 | jBadDNName | user-provided value |
+| LdapInjection.java:53:16:53:53 | new LdapName(...) | LdapInjection.java:51:55:51:85 | jBadDNName : String | LdapInjection.java:53:16:53:53 | new LdapName(...) | This LDAP query depends on a $@. | LdapInjection.java:51:55:51:85 | jBadDNName | user-provided value |
-| LdapInjection.java:53:56:53:75 | ... + ... | LdapInjection.java:51:28:51:52 | jBad : String | LdapInjection.java:53:56:53:75 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:51:28:51:52 | jBad | user-provided value |
+| LdapInjection.java:53:56:53:75 | ... + ... | LdapInjection.java:51:28:51:52 | jBad : String | LdapInjection.java:53:56:53:75 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:51:28:51:52 | jBad | user-provided value |
-| LdapInjection.java:59:63:59:82 | ... + ... | LdapInjection.java:57:28:57:52 | jBad : String | LdapInjection.java:59:63:59:82 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:57:28:57:52 | jBad | user-provided value |
+| LdapInjection.java:59:63:59:82 | ... + ... | LdapInjection.java:57:28:57:52 | jBad : String | LdapInjection.java:59:63:59:82 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:57:28:57:52 | jBad | user-provided value |
-| LdapInjection.java:65:29:65:55 | ... + ... | LdapInjection.java:63:28:63:59 | jBadInitial : String | LdapInjection.java:65:29:65:55 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:63:28:63:59 | jBadInitial | user-provided value |
+| LdapInjection.java:65:29:65:55 | ... + ... | LdapInjection.java:63:28:63:59 | jBadInitial : String | LdapInjection.java:65:29:65:55 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:63:28:63:59 | jBadInitial | user-provided value |
-| LdapInjection.java:71:16:71:81 | addAll(...) | LdapInjection.java:69:55:69:88 | jBadDNNameAdd : String | LdapInjection.java:71:16:71:81 | addAll(...) | LDAP query depends on a $@. | LdapInjection.java:69:55:69:88 | jBadDNNameAdd | user-provided value |
+| LdapInjection.java:71:16:71:81 | addAll(...) | LdapInjection.java:69:55:69:88 | jBadDNNameAdd : String | LdapInjection.java:71:16:71:81 | addAll(...) | This LDAP query depends on a $@. | LdapInjection.java:69:55:69:88 | jBadDNNameAdd | user-provided value |
-| LdapInjection.java:71:84:71:103 | ... + ... | LdapInjection.java:69:28:69:52 | jBad : String | LdapInjection.java:71:84:71:103 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:69:28:69:52 | jBad | user-provided value |
+| LdapInjection.java:71:84:71:103 | ... + ... | LdapInjection.java:69:28:69:52 | jBad : String | LdapInjection.java:71:84:71:103 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:69:28:69:52 | jBad | user-provided value |
-| LdapInjection.java:79:16:79:44 | addAll(...) | LdapInjection.java:75:55:75:89 | jBadDNNameAdd2 : String | LdapInjection.java:79:16:79:44 | addAll(...) | LDAP query depends on a $@. | LdapInjection.java:75:55:75:89 | jBadDNNameAdd2 | user-provided value |
+| LdapInjection.java:79:16:79:44 | addAll(...) | LdapInjection.java:75:55:75:89 | jBadDNNameAdd2 : String | LdapInjection.java:79:16:79:44 | addAll(...) | This LDAP query depends on a $@. | LdapInjection.java:75:55:75:89 | jBadDNNameAdd2 | user-provided value |
-| LdapInjection.java:79:47:79:66 | ... + ... | LdapInjection.java:75:28:75:52 | jBad : String | LdapInjection.java:79:47:79:66 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:75:28:75:52 | jBad | user-provided value |
+| LdapInjection.java:79:47:79:66 | ... + ... | LdapInjection.java:75:28:75:52 | jBad : String | LdapInjection.java:79:47:79:66 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:75:28:75:52 | jBad | user-provided value |
-| LdapInjection.java:85:16:85:72 | toString(...) | LdapInjection.java:83:55:83:93 | jBadDNNameToString : String | LdapInjection.java:85:16:85:72 | toString(...) | LDAP query depends on a $@. | LdapInjection.java:83:55:83:93 | jBadDNNameToString | user-provided value |
+| LdapInjection.java:85:16:85:72 | toString(...) | LdapInjection.java:83:55:83:93 | jBadDNNameToString : String | LdapInjection.java:85:16:85:72 | toString(...) | This LDAP query depends on a $@. | LdapInjection.java:83:55:83:93 | jBadDNNameToString | user-provided value |
-| LdapInjection.java:85:75:85:94 | ... + ... | LdapInjection.java:83:28:83:52 | jBad : String | LdapInjection.java:85:75:85:94 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:83:28:83:52 | jBad | user-provided value |
+| LdapInjection.java:85:75:85:94 | ... + ... | LdapInjection.java:83:28:83:52 | jBad : String | LdapInjection.java:85:75:85:94 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:83:28:83:52 | jBad | user-provided value |
-| LdapInjection.java:91:16:91:73 | (...)... | LdapInjection.java:89:55:89:90 | jBadDNNameClone : String | LdapInjection.java:91:16:91:73 | (...)... | LDAP query depends on a $@. | LdapInjection.java:89:55:89:90 | jBadDNNameClone | user-provided value |
+| LdapInjection.java:91:16:91:73 | (...)... | LdapInjection.java:89:55:89:90 | jBadDNNameClone : String | LdapInjection.java:91:16:91:73 | (...)... | This LDAP query depends on a $@. | LdapInjection.java:89:55:89:90 | jBadDNNameClone | user-provided value |
-| LdapInjection.java:91:76:91:95 | ... + ... | LdapInjection.java:89:28:89:52 | jBad : String | LdapInjection.java:91:76:91:95 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:89:28:89:52 | jBad | user-provided value |
+| LdapInjection.java:91:76:91:95 | ... + ... | LdapInjection.java:89:28:89:52 | jBad : String | LdapInjection.java:91:76:91:95 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:89:28:89:52 | jBad | user-provided value |
-| LdapInjection.java:108:20:108:39 | ... + ... | LdapInjection.java:106:58:106:84 | uBadDN : String | LdapInjection.java:108:20:108:39 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:106:58:106:84 | uBadDN | user-provided value |
+| LdapInjection.java:108:20:108:39 | ... + ... | LdapInjection.java:106:58:106:84 | uBadDN : String | LdapInjection.java:108:20:108:39 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:106:58:106:84 | uBadDN | user-provided value |
-| LdapInjection.java:108:67:108:86 | ... + ... | LdapInjection.java:106:31:106:55 | uBad : String | LdapInjection.java:108:67:108:86 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:106:31:106:55 | uBad | user-provided value |
+| LdapInjection.java:108:67:108:86 | ... + ... | LdapInjection.java:106:31:106:55 | uBad : String | LdapInjection.java:108:67:108:86 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:106:31:106:55 | uBad | user-provided value |
-| LdapInjection.java:113:58:113:88 | create(...) | LdapInjection.java:112:31:112:67 | uBadFilterCreate : String | LdapInjection.java:113:58:113:88 | create(...) | LDAP query depends on a $@. | LdapInjection.java:112:31:112:67 | uBadFilterCreate | user-provided value |
+| LdapInjection.java:113:58:113:88 | create(...) | LdapInjection.java:112:31:112:67 | uBadFilterCreate : String | LdapInjection.java:113:58:113:88 | create(...) | This LDAP query depends on a $@. | LdapInjection.java:112:31:112:67 | uBadFilterCreate | user-provided value |
-| LdapInjection.java:121:14:121:14 | s | LdapInjection.java:117:31:117:70 | uBadROSearchRequest : String | LdapInjection.java:121:14:121:14 | s | LDAP query depends on a $@. | LdapInjection.java:117:31:117:70 | uBadROSearchRequest | user-provided value |
+| LdapInjection.java:121:14:121:14 | s | LdapInjection.java:117:31:117:70 | uBadROSearchRequest : String | LdapInjection.java:121:14:121:14 | s | This LDAP query depends on a $@. | LdapInjection.java:117:31:117:70 | uBadROSearchRequest | user-provided value |
-| LdapInjection.java:121:14:121:14 | s | LdapInjection.java:117:73:117:103 | uBadROSRDN : String | LdapInjection.java:121:14:121:14 | s | LDAP query depends on a $@. | LdapInjection.java:117:73:117:103 | uBadROSRDN | user-provided value |
+| LdapInjection.java:121:14:121:14 | s | LdapInjection.java:117:73:117:103 | uBadROSRDN : String | LdapInjection.java:121:14:121:14 | s | This LDAP query depends on a $@. | LdapInjection.java:117:73:117:103 | uBadROSRDN | user-provided value |
-| LdapInjection.java:129:14:129:14 | s | LdapInjection.java:125:31:125:68 | uBadSearchRequest : String | LdapInjection.java:129:14:129:14 | s | LDAP query depends on a $@. | LdapInjection.java:125:31:125:68 | uBadSearchRequest | user-provided value |
+| LdapInjection.java:129:14:129:14 | s | LdapInjection.java:125:31:125:68 | uBadSearchRequest : String | LdapInjection.java:129:14:129:14 | s | This LDAP query depends on a $@. | LdapInjection.java:125:31:125:68 | uBadSearchRequest | user-provided value |
-| LdapInjection.java:129:14:129:14 | s | LdapInjection.java:125:71:125:99 | uBadSRDN : String | LdapInjection.java:129:14:129:14 | s | LDAP query depends on a $@. | LdapInjection.java:125:71:125:99 | uBadSRDN | user-provided value |
+| LdapInjection.java:129:14:129:14 | s | LdapInjection.java:125:71:125:99 | uBadSRDN : String | LdapInjection.java:129:14:129:14 | s | This LDAP query depends on a $@. | LdapInjection.java:125:71:125:99 | uBadSRDN | user-provided value |
-| LdapInjection.java:135:22:135:44 | ... + ... | LdapInjection.java:133:58:133:87 | uBadDNSFR : String | LdapInjection.java:135:22:135:44 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:133:58:133:87 | uBadDNSFR | user-provided value |
+| LdapInjection.java:135:22:135:44 | ... + ... | LdapInjection.java:133:58:133:87 | uBadDNSFR : String | LdapInjection.java:135:22:135:44 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:133:58:133:87 | uBadDNSFR | user-provided value |
-| LdapInjection.java:135:69:135:88 | ... + ... | LdapInjection.java:133:31:133:55 | uBad : String | LdapInjection.java:135:69:135:88 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:133:31:133:55 | uBad | user-provided value |
+| LdapInjection.java:135:69:135:88 | ... + ... | LdapInjection.java:133:31:133:55 | uBad : String | LdapInjection.java:135:69:135:88 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:133:31:133:55 | uBad | user-provided value |
-| LdapInjection.java:143:19:143:19 | s | LdapInjection.java:139:31:139:75 | uBadROSearchRequestAsync : String | LdapInjection.java:143:19:143:19 | s | LDAP query depends on a $@. | LdapInjection.java:139:31:139:75 | uBadROSearchRequestAsync | user-provided value |
+| LdapInjection.java:143:19:143:19 | s | LdapInjection.java:139:31:139:75 | uBadROSearchRequestAsync : String | LdapInjection.java:143:19:143:19 | s | This LDAP query depends on a $@. | LdapInjection.java:139:31:139:75 | uBadROSearchRequestAsync | user-provided value |
-| LdapInjection.java:143:19:143:19 | s | LdapInjection.java:139:78:139:113 | uBadROSRDNAsync : String | LdapInjection.java:143:19:143:19 | s | LDAP query depends on a $@. | LdapInjection.java:139:78:139:113 | uBadROSRDNAsync | user-provided value |
+| LdapInjection.java:143:19:143:19 | s | LdapInjection.java:139:78:139:113 | uBadROSRDNAsync : String | LdapInjection.java:143:19:143:19 | s | This LDAP query depends on a $@. | LdapInjection.java:139:78:139:113 | uBadROSRDNAsync | user-provided value |
-| LdapInjection.java:151:19:151:19 | s | LdapInjection.java:147:31:147:73 | uBadSearchRequestAsync : String | LdapInjection.java:151:19:151:19 | s | LDAP query depends on a $@. | LdapInjection.java:147:31:147:73 | uBadSearchRequestAsync | user-provided value |
+| LdapInjection.java:151:19:151:19 | s | LdapInjection.java:147:31:147:73 | uBadSearchRequestAsync : String | LdapInjection.java:151:19:151:19 | s | This LDAP query depends on a $@. | LdapInjection.java:147:31:147:73 | uBadSearchRequestAsync | user-provided value |
-| LdapInjection.java:151:19:151:19 | s | LdapInjection.java:147:76:147:109 | uBadSRDNAsync : String | LdapInjection.java:151:19:151:19 | s | LDAP query depends on a $@. | LdapInjection.java:147:76:147:109 | uBadSRDNAsync | user-provided value |
+| LdapInjection.java:151:19:151:19 | s | LdapInjection.java:147:76:147:109 | uBadSRDNAsync : String | LdapInjection.java:151:19:151:19 | s | This LDAP query depends on a $@. | LdapInjection.java:147:76:147:109 | uBadSRDNAsync | user-provided value |
-| LdapInjection.java:156:58:156:115 | createNOTFilter(...) | LdapInjection.java:155:31:155:70 | uBadFilterCreateNOT : String | LdapInjection.java:156:58:156:115 | createNOTFilter(...) | LDAP query depends on a $@. | LdapInjection.java:155:31:155:70 | uBadFilterCreateNOT | user-provided value |
+| LdapInjection.java:156:58:156:115 | createNOTFilter(...) | LdapInjection.java:155:31:155:70 | uBadFilterCreateNOT : String | LdapInjection.java:156:58:156:115 | createNOTFilter(...) | This LDAP query depends on a $@. | LdapInjection.java:155:31:155:70 | uBadFilterCreateNOT | user-provided value |
-| LdapInjection.java:161:58:161:107 | toString(...) | LdapInjection.java:160:31:160:75 | uBadFilterCreateToString : String | LdapInjection.java:161:58:161:107 | toString(...) | LDAP query depends on a $@. | LdapInjection.java:160:31:160:75 | uBadFilterCreateToString | user-provided value |
+| LdapInjection.java:161:58:161:107 | toString(...) | LdapInjection.java:160:31:160:75 | uBadFilterCreateToString : String | LdapInjection.java:161:58:161:107 | toString(...) | This LDAP query depends on a $@. | LdapInjection.java:160:31:160:75 | uBadFilterCreateToString | user-provided value |
-| LdapInjection.java:168:58:168:69 | toString(...) | LdapInjection.java:165:32:165:82 | uBadFilterCreateToStringBuffer : String | LdapInjection.java:168:58:168:69 | toString(...) | LDAP query depends on a $@. | LdapInjection.java:165:32:165:82 | uBadFilterCreateToStringBuffer | user-provided value |
+| LdapInjection.java:168:58:168:69 | toString(...) | LdapInjection.java:165:32:165:82 | uBadFilterCreateToStringBuffer : String | LdapInjection.java:168:58:168:69 | toString(...) | This LDAP query depends on a $@. | LdapInjection.java:165:32:165:82 | uBadFilterCreateToStringBuffer | user-provided value |
-| LdapInjection.java:176:14:176:26 | duplicate(...) | LdapInjection.java:172:32:172:78 | uBadSearchRequestDuplicate : String | LdapInjection.java:176:14:176:26 | duplicate(...) | LDAP query depends on a $@. | LdapInjection.java:172:32:172:78 | uBadSearchRequestDuplicate | user-provided value |
+| LdapInjection.java:176:14:176:26 | duplicate(...) | LdapInjection.java:172:32:172:78 | uBadSearchRequestDuplicate : String | LdapInjection.java:176:14:176:26 | duplicate(...) | This LDAP query depends on a $@. | LdapInjection.java:172:32:172:78 | uBadSearchRequestDuplicate | user-provided value |
-| LdapInjection.java:184:14:184:26 | duplicate(...) | LdapInjection.java:180:32:180:80 | uBadROSearchRequestDuplicate : String | LdapInjection.java:184:14:184:26 | duplicate(...) | LDAP query depends on a $@. | LdapInjection.java:180:32:180:80 | uBadROSearchRequestDuplicate | user-provided value |
+| LdapInjection.java:184:14:184:26 | duplicate(...) | LdapInjection.java:180:32:180:80 | uBadROSearchRequestDuplicate : String | LdapInjection.java:184:14:184:26 | duplicate(...) | This LDAP query depends on a $@. | LdapInjection.java:180:32:180:80 | uBadROSearchRequestDuplicate | user-provided value |
-| LdapInjection.java:192:14:192:14 | s | LdapInjection.java:188:32:188:74 | uBadSearchRequestSetDN : String | LdapInjection.java:192:14:192:14 | s | LDAP query depends on a $@. | LdapInjection.java:188:32:188:74 | uBadSearchRequestSetDN | user-provided value |
+| LdapInjection.java:192:14:192:14 | s | LdapInjection.java:188:32:188:74 | uBadSearchRequestSetDN : String | LdapInjection.java:192:14:192:14 | s | This LDAP query depends on a $@. | LdapInjection.java:188:32:188:74 | uBadSearchRequestSetDN | user-provided value |
-| LdapInjection.java:200:14:200:14 | s | LdapInjection.java:196:32:196:78 | uBadSearchRequestSetFilter : String | LdapInjection.java:200:14:200:14 | s | LDAP query depends on a $@. | LdapInjection.java:196:32:196:78 | uBadSearchRequestSetFilter | user-provided value |
+| LdapInjection.java:200:14:200:14 | s | LdapInjection.java:196:32:196:78 | uBadSearchRequestSetFilter : String | LdapInjection.java:200:14:200:14 | s | This LDAP query depends on a $@. | LdapInjection.java:196:32:196:78 | uBadSearchRequestSetFilter | user-provided value |
-| LdapInjection.java:230:14:230:33 | ... + ... | LdapInjection.java:229:57:229:83 | sBadDN : String | LdapInjection.java:230:14:230:33 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:229:57:229:83 | sBadDN | user-provided value |
+| LdapInjection.java:230:14:230:33 | ... + ... | LdapInjection.java:229:57:229:83 | sBadDN : String | LdapInjection.java:230:14:230:33 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:229:57:229:83 | sBadDN | user-provided value |
-| LdapInjection.java:230:36:230:55 | ... + ... | LdapInjection.java:229:30:229:54 | sBad : String | LdapInjection.java:230:36:230:55 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:229:30:229:54 | sBad | user-provided value |
+| LdapInjection.java:230:36:230:55 | ... + ... | LdapInjection.java:229:30:229:54 | sBad : String | LdapInjection.java:230:36:230:55 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:229:30:229:54 | sBad | user-provided value |
-| LdapInjection.java:235:20:235:85 | build(...) | LdapInjection.java:234:57:234:92 | sBadDNLNBuilder : String | LdapInjection.java:235:20:235:85 | build(...) | LDAP query depends on a $@. | LdapInjection.java:234:57:234:92 | sBadDNLNBuilder | user-provided value |
+| LdapInjection.java:235:20:235:85 | build(...) | LdapInjection.java:234:57:234:92 | sBadDNLNBuilder : String | LdapInjection.java:235:20:235:85 | build(...) | This LDAP query depends on a $@. | LdapInjection.java:234:57:234:92 | sBadDNLNBuilder | user-provided value |
-| LdapInjection.java:235:88:235:107 | ... + ... | LdapInjection.java:234:30:234:54 | sBad : String | LdapInjection.java:235:88:235:107 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:234:30:234:54 | sBad | user-provided value |
+| LdapInjection.java:235:88:235:107 | ... + ... | LdapInjection.java:234:30:234:54 | sBad : String | LdapInjection.java:235:88:235:107 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:234:30:234:54 | sBad | user-provided value |
-| LdapInjection.java:240:23:240:97 | build(...) | LdapInjection.java:239:57:239:95 | sBadDNLNBuilderAdd : String | LdapInjection.java:240:23:240:97 | build(...) | LDAP query depends on a $@. | LdapInjection.java:239:57:239:95 | sBadDNLNBuilderAdd | user-provided value |
+| LdapInjection.java:240:23:240:97 | build(...) | LdapInjection.java:239:57:239:95 | sBadDNLNBuilderAdd : String | LdapInjection.java:240:23:240:97 | build(...) | This LDAP query depends on a $@. | LdapInjection.java:239:57:239:95 | sBadDNLNBuilderAdd | user-provided value |
-| LdapInjection.java:240:100:240:119 | ... + ... | LdapInjection.java:239:30:239:54 | sBad : String | LdapInjection.java:240:100:240:119 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:239:30:239:54 | sBad | user-provided value |
+| LdapInjection.java:240:100:240:119 | ... + ... | LdapInjection.java:239:30:239:54 | sBad : String | LdapInjection.java:240:100:240:119 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:239:30:239:54 | sBad | user-provided value |
-| LdapInjection.java:245:15:245:76 | filter(...) | LdapInjection.java:244:30:244:63 | sBadLdapQuery : String | LdapInjection.java:245:15:245:76 | filter(...) | LDAP query depends on a $@. | LdapInjection.java:244:30:244:63 | sBadLdapQuery | user-provided value |
+| LdapInjection.java:245:15:245:76 | filter(...) | LdapInjection.java:244:30:244:63 | sBadLdapQuery : String | LdapInjection.java:245:15:245:76 | filter(...) | This LDAP query depends on a $@. | LdapInjection.java:244:30:244:63 | sBadLdapQuery | user-provided value |
-| LdapInjection.java:250:12:250:63 | newLdapName(...) | LdapInjection.java:249:63:249:98 | sBadDNLdapUtils : String | LdapInjection.java:250:12:250:63 | newLdapName(...) | LDAP query depends on a $@. | LdapInjection.java:249:63:249:98 | sBadDNLdapUtils | user-provided value |
+| LdapInjection.java:250:12:250:63 | newLdapName(...) | LdapInjection.java:249:63:249:98 | sBadDNLdapUtils : String | LdapInjection.java:250:12:250:63 | newLdapName(...) | This LDAP query depends on a $@. | LdapInjection.java:249:63:249:98 | sBadDNLdapUtils | user-provided value |
-| LdapInjection.java:250:66:250:112 | new HardcodedFilter(...) | LdapInjection.java:249:30:249:60 | sBadFilter : String | LdapInjection.java:250:66:250:112 | new HardcodedFilter(...) | LDAP query depends on a $@. | LdapInjection.java:249:30:249:60 | sBadFilter | user-provided value |
+| LdapInjection.java:250:66:250:112 | new HardcodedFilter(...) | LdapInjection.java:249:30:249:60 | sBadFilter : String | LdapInjection.java:250:66:250:112 | new HardcodedFilter(...) | This LDAP query depends on a $@. | LdapInjection.java:249:30:249:60 | sBadFilter | user-provided value |
-| LdapInjection.java:255:24:255:85 | filter(...) | LdapInjection.java:254:30:254:63 | sBadLdapQuery : String | LdapInjection.java:255:24:255:85 | filter(...) | LDAP query depends on a $@. | LdapInjection.java:254:30:254:63 | sBadLdapQuery | user-provided value |
+| LdapInjection.java:255:24:255:85 | filter(...) | LdapInjection.java:254:30:254:63 | sBadLdapQuery : String | LdapInjection.java:255:24:255:85 | filter(...) | This LDAP query depends on a $@. | LdapInjection.java:254:30:254:63 | sBadLdapQuery | user-provided value |
-| LdapInjection.java:261:24:261:24 | q | LdapInjection.java:259:30:259:64 | sBadLdapQuery2 : String | LdapInjection.java:261:24:261:24 | q | LDAP query depends on a $@. | LdapInjection.java:259:30:259:64 | sBadLdapQuery2 | user-provided value |
+| LdapInjection.java:261:24:261:24 | q | LdapInjection.java:259:30:259:64 | sBadLdapQuery2 : String | LdapInjection.java:261:24:261:24 | q | This LDAP query depends on a $@. | LdapInjection.java:259:30:259:64 | sBadLdapQuery2 | user-provided value |
-| LdapInjection.java:266:24:266:116 | filter(...) | LdapInjection.java:265:30:265:73 | sBadLdapQueryWithFilter : String | LdapInjection.java:266:24:266:116 | filter(...) | LDAP query depends on a $@. | LdapInjection.java:265:30:265:73 | sBadLdapQueryWithFilter | user-provided value |
+| LdapInjection.java:266:24:266:116 | filter(...) | LdapInjection.java:265:30:265:73 | sBadLdapQueryWithFilter : String | LdapInjection.java:266:24:266:116 | filter(...) | This LDAP query depends on a $@. | LdapInjection.java:265:30:265:73 | sBadLdapQueryWithFilter | user-provided value |
-| LdapInjection.java:272:24:272:57 | filter(...) | LdapInjection.java:270:30:270:74 | sBadLdapQueryWithFilter2 : String | LdapInjection.java:272:24:272:57 | filter(...) | LDAP query depends on a $@. | LdapInjection.java:270:30:270:74 | sBadLdapQueryWithFilter2 | user-provided value |
+| LdapInjection.java:272:24:272:57 | filter(...) | LdapInjection.java:270:30:270:74 | sBadLdapQueryWithFilter2 : String | LdapInjection.java:272:24:272:57 | filter(...) | This LDAP query depends on a $@. | LdapInjection.java:270:30:270:74 | sBadLdapQueryWithFilter2 | user-provided value |
-| LdapInjection.java:277:12:277:66 | base(...) | LdapInjection.java:276:31:276:68 | sBadLdapQueryBase : String | LdapInjection.java:277:12:277:66 | base(...) | LDAP query depends on a $@. | LdapInjection.java:276:31:276:68 | sBadLdapQueryBase | user-provided value |
+| LdapInjection.java:277:12:277:66 | base(...) | LdapInjection.java:276:31:276:68 | sBadLdapQueryBase : String | LdapInjection.java:277:12:277:66 | base(...) | This LDAP query depends on a $@. | LdapInjection.java:276:31:276:68 | sBadLdapQueryBase | user-provided value |
-| LdapInjection.java:282:24:282:98 | is(...) | LdapInjection.java:281:31:281:71 | sBadLdapQueryComplex : String | LdapInjection.java:282:24:282:98 | is(...) | LDAP query depends on a $@. | LdapInjection.java:281:31:281:71 | sBadLdapQueryComplex | user-provided value |
+| LdapInjection.java:282:24:282:98 | is(...) | LdapInjection.java:281:31:281:71 | sBadLdapQueryComplex : String | LdapInjection.java:282:24:282:98 | is(...) | This LDAP query depends on a $@. | LdapInjection.java:281:31:281:71 | sBadLdapQueryComplex | user-provided value |
-| LdapInjection.java:287:18:287:83 | toString(...) | LdapInjection.java:286:31:286:69 | sBadFilterToString : String | LdapInjection.java:287:18:287:83 | toString(...) | LDAP query depends on a $@. | LdapInjection.java:286:31:286:69 | sBadFilterToString | user-provided value |
+| LdapInjection.java:287:18:287:83 | toString(...) | LdapInjection.java:286:31:286:69 | sBadFilterToString : String | LdapInjection.java:287:18:287:83 | toString(...) | This LDAP query depends on a $@. | LdapInjection.java:286:31:286:69 | sBadFilterToString | user-provided value |
-| LdapInjection.java:294:18:294:29 | toString(...) | LdapInjection.java:291:31:291:67 | sBadFilterEncode : String | LdapInjection.java:294:18:294:29 | toString(...) | LDAP query depends on a $@. | LdapInjection.java:291:31:291:67 | sBadFilterEncode | user-provided value |
+| LdapInjection.java:294:18:294:29 | toString(...) | LdapInjection.java:291:31:291:67 | sBadFilterEncode : String | LdapInjection.java:294:18:294:29 | toString(...) | This LDAP query depends on a $@. | LdapInjection.java:291:31:291:67 | sBadFilterEncode | user-provided value |
-| LdapInjection.java:316:14:316:33 | ... + ... | LdapInjection.java:314:57:314:83 | aBadDN : String | LdapInjection.java:316:14:316:33 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:314:57:314:83 | aBadDN | user-provided value |
+| LdapInjection.java:316:14:316:33 | ... + ... | LdapInjection.java:314:57:314:83 | aBadDN : String | LdapInjection.java:316:14:316:33 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:314:57:314:83 | aBadDN | user-provided value |
-| LdapInjection.java:316:36:316:55 | ... + ... | LdapInjection.java:314:30:314:54 | aBad : String | LdapInjection.java:316:36:316:55 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:314:30:314:54 | aBad | user-provided value |
+| LdapInjection.java:316:36:316:55 | ... + ... | LdapInjection.java:314:30:314:54 | aBad : String | LdapInjection.java:316:36:316:55 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:314:30:314:54 | aBad | user-provided value |
-| LdapInjection.java:322:14:322:62 | getName(...) | LdapInjection.java:320:57:320:94 | aBadDNObjToString : String | LdapInjection.java:322:14:322:62 | getName(...) | LDAP query depends on a $@. | LdapInjection.java:320:57:320:94 | aBadDNObjToString | user-provided value |
+| LdapInjection.java:322:14:322:62 | getName(...) | LdapInjection.java:320:57:320:94 | aBadDNObjToString : String | LdapInjection.java:322:14:322:62 | getName(...) | This LDAP query depends on a $@. | LdapInjection.java:320:57:320:94 | aBadDNObjToString | user-provided value |
-| LdapInjection.java:322:65:322:84 | ... + ... | LdapInjection.java:320:30:320:54 | aBad : String | LdapInjection.java:322:65:322:84 | ... + ... | LDAP query depends on a $@. | LdapInjection.java:320:30:320:54 | aBad | user-provided value |
+| LdapInjection.java:322:65:322:84 | ... + ... | LdapInjection.java:320:30:320:54 | aBad : String | LdapInjection.java:322:65:322:84 | ... + ... | This LDAP query depends on a $@. | LdapInjection.java:320:30:320:54 | aBad | user-provided value |
-| LdapInjection.java:330:14:330:14 | s | LdapInjection.java:326:30:326:67 | aBadSearchRequest : String | LdapInjection.java:330:14:330:14 | s | LDAP query depends on a $@. | LdapInjection.java:326:30:326:67 | aBadSearchRequest | user-provided value |
+| LdapInjection.java:330:14:330:14 | s | LdapInjection.java:326:30:326:67 | aBadSearchRequest : String | LdapInjection.java:330:14:330:14 | s | This LDAP query depends on a $@. | LdapInjection.java:326:30:326:67 | aBadSearchRequest | user-provided value |
-| LdapInjection.java:338:14:338:14 | s | LdapInjection.java:334:74:334:103 | aBadDNObj : String | LdapInjection.java:338:14:338:14 | s | LDAP query depends on a $@. | LdapInjection.java:334:74:334:103 | aBadDNObj | user-provided value |
+| LdapInjection.java:338:14:338:14 | s | LdapInjection.java:334:74:334:103 | aBadDNObj : String | LdapInjection.java:338:14:338:14 | s | This LDAP query depends on a $@. | LdapInjection.java:334:74:334:103 | aBadDNObj | user-provided value |
-| LdapInjection.java:346:14:346:24 | getBase(...) | LdapInjection.java:342:30:342:72 | aBadDNSearchRequestGet : String | LdapInjection.java:346:14:346:24 | getBase(...) | LDAP query depends on a $@. | LdapInjection.java:342:30:342:72 | aBadDNSearchRequestGet | user-provided value |
+| LdapInjection.java:346:14:346:24 | getBase(...) | LdapInjection.java:342:30:342:72 | aBadDNSearchRequestGet : String | LdapInjection.java:346:14:346:24 | getBase(...) | This LDAP query depends on a $@. | LdapInjection.java:342:30:342:72 | aBadDNSearchRequestGet | user-provided value |