Python: Minor tweaks to qldoc and release note.

2026-03-17 04:56:58 +01:00 · 2019-01-25 11:34:41 +00:00
parent 88d8cb514c
commit 6ddbed7d95
3 changed files with 8 additions and 5 deletions
--- a/python/ql/src/Security/CWE-020/IncompleteHostnameRegExp.qhelp
+++ b/python/ql/src/Security/CWE-020/IncompleteHostnameRegExp.qhelp
@@ -56,9 +56,8 @@

        </p>
        <p>
-            This vulnerability is addressed in the <code>safe</code> check, which
-            escapes the <code>.</code> and will reject <code>wwwXexample.com</code>.
-
+            The <code>safe</code> check closes this vulnerability by escaping the <code>.</code>
+            so that URLs of the form <code>wwwXexample.com</code> are rejected.
        </p>

    </example>
--- a/python/ql/src/Security/CWE-020/examples/IncompleteUrlSubstringSanitization.py
+++ b/python/ql/src/Security/CWE-020/examples/IncompleteUrlSubstringSanitization.py
@@ -3,12 +3,16 @@ from urllib.parse import urlparse

 app = Flask(__name__)

+# Not safe, as "evil-example.net/example.com" would be accepted
+
@app.route('/some/path/bad1')
 def unsafe1(request):
    target = request.args.get('target', '')
    if "example.com" in target:
        return redirect(target)

+# Not safe, as "benign-looking-prefix-example.com" would be accepted
+
@app.route('/some/path/bad2')
 def unsafe2(request):
    target = request.args.get('target', '')