hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 05:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Python: Two new queries for URL and hostname sanitization (CWE-020).

Browse Source
This commit is contained in:
Mark Shannon
2019-01-24 12:57:14 +00:00
parent ffa8b12d48
commit 88d8cb514c
13 changed files with 385 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
python/ql/test/query-tests/Security/CWE-020/hosttest.py Normal file
View File

@@ -0,0 +1,19 @@
from flask import Flask, request, redirect
import re
app = Flask(__name__)
UNSAFE_REGEX = re.compile("(www|beta).example.com/")
SAFE_REGEX = re.compile(r"(www|beta)\.example\.com/")
@app.route('/some/path/bad')
def unsafe(request):
target = request.args.get('target', '')
if UNSAFE_REGEX.match(target):
return redirect(target)
@app.route('/some/path/good')
def safe(request):
target = request.args.get('target', '')
if SAFE_REGEX.match(target):
return redirect(target)