hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 13:45:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update javascript/ql/test/experimental/Security/CWE-918/check-regex.js

Browse Source 
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
This commit is contained in:
Napalys Klicius
2024-11-11 15:40:22 +01:00
committed by GitHub
parent 70cf1a57bc
commit 1eabb6cbdd
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
javascript/ql/test/experimental/Security/CWE-918/check-regex.js
View File

@@ -58,7 +58,7 @@ app.get('/check-with-axios', req => {
axios.get(baseURL + req.params.tainted); // OK
}
if (!isValidPathMatchAll(req.params.tainted) ) {
axios.get(baseURL + req.params.tainted); // SSRF
axios.get(baseURL + req.params.tainted); // NOT OK - SSRF
} else {
axios.get(baseURL + req.params.tainted); // OK
}