add calls to parseDN as sinks for ldap-injection

2026-05-05 13:45:19 +02:00 · 2021-09-30 14:04:39 +02:00
parent d4de5e3248
commit 2062afc868
3 changed files with 12 additions and 0 deletions
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll
@@ -52,6 +52,9 @@ module SqlInjection {
      or
      // A search options object, which contains a filter and a baseDN.
      this = any(LDAPjs::SearchOptions opt).getARhs()
+      or
+      // A call to "parseDN", which parses a DN from a string.
+      this = LDAPjs::ldapjs().getMember("parseDN").getACall().getArgument(0)
    }
  }