hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity

JS: add test cases for serialize-javascript with tainted object properties

Browse Source
This commit is contained in:
Napalys Klicius
2025-06-16 09:30:40 +02:00
parent 70647ce290
commit a96ea182c7
1 changed files with 25 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss/tst2.js
View File

@@ -87,4 +87,28 @@ app.get('/baz', function(req, res) {
res.send(p); // $ Alert
res.send(other.p); // $ Alert
});
});
app.get('/baz', function(req, res) {
let { p } = req.params; // $ MISSING: Source
var serialized = serializeJavaScript(p);
res.send(serialized);
var unsafe = serializeJavaScript({someProperty: p}, {unsafe: true});
res.send(unsafe); // $ MISSING: Alert
});
app.get('/baz', function(req, res) {
let { p } = req.params; // $ MISSING: Source
var serialized = serializeJavaScript(p);
res.send(serialized);
let obj = {someProperty: p};
var unsafe = serializeJavaScript(obj, {unsafe: true});
res.send(unsafe); // $ MISSING: Alert
});