Add required __raw__ keyword

This __raw__ keyword is required for the actual mongoengine vulnerability. More info can be found below: http://docs.mongoengine.org/guide/querying.html?highlight=inc__#raw-queries
2026-05-02 20:25:13 +02:00 · 2021-04-05 19:07:13 -04:00
parent 80216f6974
commit 3f0c758622
2 changed files with 2 additions and 2 deletions
--- a/python/ql/test/experimental/query-tests/Security/CWE-943/flask_mongoengine_bad.py
+++ b/python/ql/test/experimental/query-tests/Security/CWE-943/flask_mongoengine_bad.py
@@ -23,7 +23,7 @@ Movie(title='bb').save()
 def home_page():
    unsanitized_search = json.loads(request.args['search'])

-    data = Movie.objects(unsanitized_search)
+    data = Movie.objects(__raw__=unsanitized_search)
    return data.to_json()

 # if __name__ == "__main__":
--- a/python/ql/test/experimental/query-tests/Security/CWE-943/flask_mongoengine_good.py
+++ b/python/ql/test/experimental/query-tests/Security/CWE-943/flask_mongoengine_good.py
@@ -25,7 +25,7 @@ def home_page():
    unsanitized_search = json.loads(request.args['search'])
    sanitize(unsanitized_search)

-    data = Movie.objects(unsanitized_search)
+    data = Movie.objects(__raw__=unsanitized_search)
    return data.to_json()

 # if __name__ == "__main__":