Merge pull request #10408 from giper45/patch-1

Updated vulnerable XSS.java version
2026-04-28 02:05:14 +02:00 · 2022-09-13 17:50:47 +02:00
parent af25cf8be2 ac46a38b9d
commit 4708052741
2 changed files with 4 additions and 3 deletions
--- a/java/ql/src/Security/CWE/CWE-079/XSS.java
+++ b/java/ql/src/Security/CWE/CWE-079/XSS.java
@@ -1,8 +1,9 @@
 public class XSS extends HttpServlet {
 	protected void doGet(HttpServletRequest request, HttpServletResponse response)
 	throws ServletException, IOException {
-		// BAD: a request parameter is written directly to an error response page
-		response.sendError(HttpServletResponse.SC_NOT_FOUND,
+		// BAD: a request parameter is written directly to the Servlet response stream
+		response.getWriter().print(
 				"The page \"" + request.getParameter("page") + "\" was not found.");
+
 	}
 }
--- a/java/ql/src/Security/CWE/CWE-079/XSS.qhelp
+++ b/java/ql/src/Security/CWE/CWE-079/XSS.qhelp
@@ -18,7 +18,7 @@ reference.</p>
 </recommendation>
 <example>

-<p>The following example shows the page parameter being written directly to the server error page,
+<p>The following example shows the <code>page</code> parameter being written directly to the page,
 leaving the website vulnerable to cross-site scripting.</p>

 <sample src="XSS.java" />