hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity

Java: java.awt.Desktop::browse is a url-redirection sink

Browse Source 
Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
This commit is contained in:
Stephan Brandauer
2024-01-23 09:28:13 +01:00
committed by GitHub
parent a9d21cef01
commit 8b34407ab7
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/lib/ext/java.awt.model.yml
View File

@@ -17,4 +17,4 @@ extensions:
pack: codeql/java-all
extensible: sinkModel
data:
- ["java.awt", "Desktop", True, "browse", "(URI)", "", "Argument[0]", "request-forgery", "ai-manual"]
- ["java.awt", "Desktop", True, "browse", "(URI)", "", "Argument[0]", "url-redirection", "ai-manual"]