hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-22 03:36:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix FlaskMail's getTo

Browse Source
This commit is contained in:
jorgectf
2022-03-08 18:45:53 +01:00
parent bbba1a21c4
commit 3f43e6ef54
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python/ql/src/experimental/semmle/python/libraries/FlaskMail.qll
View File

@@ -74,7 +74,7 @@ private module FlaskMail {
override DataFlow::Node getTo() { override DataFlow::Node getTo() {
result = this.getFlaskMailArgument(1, "recipients") result = this.getFlaskMailArgument(1, "recipients")
or or
result = flaskMessageInstance().getMember("add_recipient").getACall().getArg(0) result = this.getMessage().getAMethodCall("add_recipient").getACall().getArg(0)
} }
override DataFlow::Node getFrom() { result = this.getFlaskMailArgument(5, "sender") } override DataFlow::Node getFrom() { result = this.getFlaskMailArgument(5, "sender") }