hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 10:15:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Recognize subclasses of HTMLElement in domValueRef

Browse Source
This commit is contained in:
Asger Feldthaus
2022-04-07 09:51:26 +02:00
parent cff8dc0537
commit 4eda6f643f
3 changed files with 20 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
javascript/ql/lib/semmle/javascript/DOM.qll
View File

@@ -420,6 +420,13 @@ module DOM {
t.startInProp("target") and
result = domEventSource()
or
t.start() and
exists(DataFlow::ClassNode cls |
cls.getASuperClassNode().getALocalSource() =
DataFlow::globalVarRef(any(string s | s.matches("HTML%Element"))) and
result = cls.getAReceiverNode()
)
or
exists(DataFlow::TypeTracker t2 | result = domValueRef(t2).track(t2, t))
}