hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

JS: fix typo in qhelp (parameter type confusion)

Browse Source
This commit is contained in:
Julian Tibble
2018-08-14 13:07:20 +01:00
parent 58a2639518
commit 5456ffb64c
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
javascript/ql/src/Security/CWE-843/TypeConfusionThroughParameterTampering.qhelp
View File

@@ -15,7 +15,7 @@
However, sanitizing request parameters assuming they have type
<code>String</code> and using the builtin string methods such as
<code>String.prototye.indexOf</code> is susceptible to type confusion
<code>String.prototype.indexOf</code> is susceptible to type confusion
attacks.
In a type confusion attack, an attacker tampers with an HTTP request