Fix OWASP broken links

2025-12-20 10:46:30 +01:00 · 2020-10-01 13:09:52 +01:00
parent 282d3e8f7e
commit 578ea1ae43
16 changed files with 16 additions and 16 deletions
--- a/python/ql/src/Security/CWE-022/PathInjection.qhelp
+++ b/python/ql/src/Security/CWE-022/PathInjection.qhelp
@@ -55,7 +55,7 @@ known prefix. This ensures that regardless of the user input, the resulting path
 </example>

 <references>
-<li>OWASP: <a href="https://www.owasp.org/index.php/Path_traversal">Path Traversal</a>.</li>
+<li>OWASP: <a href="https://owasp.org/www-community/attacks/Path_Traversal">Path Traversal</a>.</li>
 <li>npm: <a href="http://werkzeug.pocoo.org/docs/utils/#werkzeug.utils.secure_filename">werkzeug.utils.secure_filename</a>.</li>
 </references>
 </qhelp>
--- a/python/ql/src/Security/CWE-022/TarSlip.qhelp
+++ b/python/ql/src/Security/CWE-022/TarSlip.qhelp
@@ -60,7 +60,7 @@ Snyk:
 </li>
 <li>
 OWASP:
-<a href="https://www.owasp.org/index.php/Path_traversal">Path Traversal</a>.
+<a href="https://owasp.org/www-community/attacks/Path_Traversal">Path Traversal</a>.
 </li>
 <li>
 Python Library Reference:
--- a/python/ql/src/Security/CWE-209/StackTraceExposure.qhelp
+++ b/python/ql/src/Security/CWE-209/StackTraceExposure.qhelp
@@ -47,6 +47,6 @@ log, but remote users will not see the information.
 </example>

 <references>
-<li>OWASP: <a href="https://www.owasp.org/index.php/Information_Leak_(information_disclosure)">Information Leak</a>.</li>
+<li>OWASP: <a href="https://owasp.org/www-community/Improper_Error_Handling">Improper Error Handling</a>.</li>
 </references>
 </qhelp>