hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-29 18:55:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #11282 from egregius313/egregiu313/webview-addjavascriptinterface

Browse Source 
Java: Query for detecting addJavascriptInterface method calls
This commit is contained in:
Edward Minnix III
2022-12-19 11:28:45 -05:00
committed by GitHub
parent 016c7a8ca7 72484b9483
commit 39a7c7bb12
8 changed files with 108 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewAddJavascriptInterface.expected Normal file
View File

@@ -0,0 +1 @@
| WebViewAddJavascriptInterface.java:10:9:10:61 | addJavascriptInterface(...) | JavaScript interface to Java object added in Android WebView. |

12
java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewAddJavascriptInterface.java Normal file
View File

@@ -0,0 +1,12 @@
package com.example.test;
import android.webkit.WebView;
class WebViewAddJavascriptInterface {
class Greeter {
}
public void addGreeter(WebView view) {
view.addJavascriptInterface(new Greeter(), "greeter");
}
}

1
java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewAddJavascriptInterface.qlref Normal file
View File

@@ -0,0 +1 @@
Security/CWE/CWE-079/AndroidWebViewAddJavascriptInterface.ql